Wellintech Kinghistorian vulnerabilities
3 known vulnerabilities affecting wellintech/kinghistorian.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2022-43663P2CRITICALCVSS 9.8v35.01.00.052023-03-20
CVE-2022-43663 [CRITICAL] CWE-195 CVE-2022-43663: An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTec
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.
nvd
CVE-2022-45124P3HIGHCVSS 7.5v35.01.00.052023-03-20
CVE-2022-45124 [HIGH] CWE-200 CVE-2022-45124: An information disclosure vulnerability exists in the User authentication functionality of WellinTec
An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can sniff network traffic to leverage this vulnerability.
nvd
CVE-2012-2559P3CRITICALCVSS 10.0v3.02012-07-05
CVE-2012-2559 [CRITICAL] CWE-399 CVE-2012-2559: WellinTech KingHistorian 3.0 allows remote attackers to execute arbitrary code or cause a denial of
WellinTech KingHistorian 3.0 allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer write) via a crafted packet to TCP port 5678.
nvd