7.2
CVE-2012-1824
- EPSS 0.48%
- Veröffentlicht 25.05.2012 19:55:01
- Zuletzt bearbeitet 16.06.2026 23:40:22
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
LoginUntrusted search path vulnerability in Measuresoft ScadaPro Client before 4.0.0 and ScadaPro Server before 4.0.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Measuresoft ≫ Scadapro Client Version <= 3.3.1
Measuresoft ≫ Scadapro Server Version <= 3.3.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.48% | 0.373 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://www.measuresoft.net/downloads/Measuresoft%20SCADA%204.4.6/issue_disks/Client/DOCUMENTATION/ReleaseNotes.doc
http://www.measuresoft.net/downloads/Measuresoft%20SCADA%204.4.6/issue_disks/Server/DOCUMENTATION/ReleaseNotes.doc
http://www.us-cert.gov/control_systems/pdf/ICSA-12-145-01.pdf