CVE-2014-0750
N/A
N/A
Summary
Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted HTTP request, aka ZDI-CAN-1622.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| GE | Proficy HMI/SCADA - CIMPLICITY | 4.01 < 8.2 | affected |
| GE | Proficy Process Systems with CIMPLICITY | all versions | affected |
Weaknesses
- CWE-22: CWE-22
ADP Enrichment
CVE Program Container
Additional References
- http://ics-cert.us-cert.gov/advisories/ICSA-14-023-01
- http://support.ge-ip.com/support/index?page=kbchannel&id=KB15939
- http://www.securityfocus.com/bid/65124
References
- https://www.cisa.gov/news-events/ics-advisories/icsa-14-023-01
- http://support.ge-ip.com/support/index?page=kbchannel&id=KB15939
- http://www.securityfocus.com/bid/65124
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.