9.3
CVE-2011-4039
- EPSS 3.32%
- Veröffentlicht 10.02.2012 19:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
LoginInvensys Wonderware HMI Reports 3.42.835.0304 and earlier, as used in Ocean Data Systems Dream Report before 4.0 and other products, allows user-assisted remote attackers to execute arbitrary code via a malformed file that triggers a "write access violation."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dreamreport ≫ Dream Report Version <= 3.43
Dreamreport ≫ Dream Report Version3.21
Dreamreport ≫ Dream Report Version3.41
Dreamreport ≫ Dream Report Version3.42
Invensys ≫ Wonderware Hmi Reports Version <= 3.42.835.0304
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.32% | 0.867 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|