Trianglemicroworks

Scada Data Gateway

22 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-39459

  • EPSS 0.34%
  • Veröffentlicht 03.05.2024 03:15:10
  • Zuletzt bearbeitet 17.06.2025 21:03:44

Triangle MicroWorks SCADA Data Gateway Directory Traversal Arbitrary File Creation Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. User interacti...

5.3

CVE-2023-39458

  • EPSS 0.02%
  • Veröffentlicht 03.05.2024 03:15:10
  • Zuletzt bearbeitet 17.06.2025 21:03:48

Triangle MicroWorks SCADA Data Gateway Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Triangle MicroWorks SCADA Data Gatewa...

9.8

CVE-2023-39457

  • EPSS 0.38%
  • Veröffentlicht 03.05.2024 03:15:10
  • Zuletzt bearbeitet 17.06.2025 21:03:54

Triangle MicroWorks SCADA Data Gateway Missing Authentication Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to ex...

5.3

CVE-2023-2187

  • EPSS 0.1%
  • Veröffentlicht 07.06.2023 07:15:08
  • Zuletzt bearbeitet 21.11.2024 07:58:06

On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can send broadcast events to any user via the WebMonitor.An unauthenticated user can use this vulnerability to forcefully log out of any currently logged-in u...

9.8

CVE-2023-2186

  • EPSS 0.23%
  • Veröffentlicht 07.06.2023 07:15:08
  • Zuletzt bearbeitet 21.11.2024 07:58:06

On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can send a specially crafted broadcast message including format string characters to the SCADA Data Gateway to perform unrestricted memory reads.An unauthenti...

7.5

CVE-2020-10615

  • EPSS 0.77%
  • Veröffentlicht 15.04.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:55:42

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers cause a denial-of-service condition due to a lack of proper validation of the length of user-supplied data, prior to copying it to a f...

7.5

CVE-2020-10613

  • EPSS 0.7%
  • Veröffentlicht 15.04.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:55:42

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to disclose sensitive information due to the lack of proper validation of user-supplied data, which can result in a read past the end ...

9.8

CVE-2020-10611

  • EPSS 9.01%
  • Veröffentlicht 15.04.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:55:41

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type confusion condition. ...

2.1

CVE-2014-2343

  • EPSS 0.09%
  • Veröffentlicht 30.05.2014 23:55:02
  • Zuletzt bearbeitet 02.10.2025 23:15:30

Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service (excessive data processing) via a crafted DNP request over a serial line.

5

CVE-2014-2342

  • EPSS 0.7%
  • Veröffentlicht 30.05.2014 23:55:02
  • Zuletzt bearbeitet 02.10.2025 23:15:29

Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows remote attackers to cause a denial of service (excessive data processing) via a crafted DNP3 packet.