Known Vulnerabilities for products from Measuresoft
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Measuresoft".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-3263 json | The security descriptor of Measuresoft ScadaPro Server version 6.7 has inconsistent permissions, which could allow a local us... | 7.8 - HIGH | 2022-09-23 | 2022-09-27 |
| CVE-2022-2898 json | Measuresoft ScadaPro Server and Client (All Versions) do not properly resolve links before file access; this could allow a de... | 5.5 - MEDIUM | 2022-08-31 | 2022-09-02 |
| CVE-2022-2897 json | Measuresoft ScadaPro Server and Client (All Versions) do not properly resolve links before file access; this could allow priv... | 7.8 - HIGH | 2022-08-31 | 2022-09-02 |
| CVE-2022-2896 json | Measuresoft ScadaPro Server (All Versions) allows use after free while processing a specific project file. | 7.8 - HIGH | 2022-08-31 | 2023-06-28 |
| CVE-2022-2895 json | Measuresoft ScadaPro Server (All Versions) uses unmaintained ActiveX controls. These controls may allow two stack-based buffe... | 7.8 - HIGH | 2022-08-31 | 2022-09-02 |
| CVE-2022-2894 json | Measuresoft ScadaPro Server (All Versions) uses unmaintained ActiveX controls. The controls may allow seven untrusted pointer... | 7.8 - HIGH | 2022-08-31 | 2022-09-02 |
| CVE-2022-2892 json | Measuresoft ScadaPro Server (Versions prior to 6.8.0.1) uses an unmaintained ActiveX control, which may allow an out-of-bound... | 7.8 - HIGH | 2022-08-31 | 2022-09-02 |
| CVE-2012-1824 json | Untrusted search path vulnerability in Measuresoft ScadaPro Client before 4.0.0 and ScadaPro Server before 4.0.0 allows local... | 7.2 - HIGH | 2012-05-25 | 2012-05-28 |
| CVE-2011-3497 json | service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF f... | 10 - HIGH | 2011-09-16 | 2012-02-14 |
| CVE-2011-3496 json | service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary commands via shell metacha... | 10 - HIGH | 2011-09-16 | 2012-02-14 |
| CVE-2011-3495 json | Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers ... | 10 - HIGH | 2011-09-16 | 2012-02-14 |
| CVE-2011-3490 json | Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to caus... | 10 - HIGH | 2011-09-16 | 2012-02-14 |