Ge Fanuc : Security Vulnerabilities, CVEs, CVSS score >= 7
GE Fanuc iFIX 5.0 and earlier relies on client-side authentication involving a weakly encrypted local password file, which allows remote attackers to bypass intended access restrictions and start privileged server login sessions by recovering a password or by using a modified program module.
Max CVSS
10.0
EPSS Score
1.15%
Published
2009-02-13
Updated
2017-08-08
Heap-based buffer overflow in w32rtr.exe in GE Fanuc CIMPLICITY HMI SCADA system 7.0 before 7.0 SIM 9, and earlier versions before 6.1 SP6 Hot fix - 010708_162517_6106, allow remote attackers to execute arbitrary code via unknown vectors.
Max CVSS
10.0
EPSS Score
30.34%
Published
2008-01-29
Updated
2018-10-15
Unrestricted file upload vulnerability in GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the main virtual directory.
Max CVSS
7.5
EPSS Score
46.37%
Published
2008-01-29
Updated
2018-10-15
3 vulnerabilities found