Kingscada

kingscada

Vendor: Wellintech • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-20410 1Wellintech 1Kingscada Nov 21, 2024 Dec 24, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 WellinTech KingSCADA before 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered when sending a specially crafted packet to the AlarmServer (AEserver.exe) service listening on TCP port 12401.
CVE-2014-0787 1Wellintech 1Kingscada May 6, 2026 Apr 12, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Stack-based buffer overflow in WellinTech KingSCADA before 3.1.2.13 allows remote attackers to execute arbitrary code via a crafted packet.
CVE-2013-2827 1Wellintech 3Kingalarm&event KinggraphicKingscada Apr 29, 2026 Jan 15, 2014 N/A· v4 N/A· v3 7.5 HIGH· v2 An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client machine and execute this...Show more An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client machine and execute this code via the ProjectURL property value.Show less
CVE-2013-2826 1Wellintech 3Kingalarm&event KinggraphicKingscada Apr 29, 2026 Jan 15, 2014 N/A· v4 N/A· v3 6.4 MEDIUM· v2 WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote attackers to bypass intend...Show more WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote attackers to bypass intended access restrictions and discover credentials via a crafted packet to TCP port 8130.Show less