CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
96.1%
Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls, which allows remote attackers to have an unspecified impact via a crafted web site.
Vendor | Product | Version | CPE |
---|---|---|---|
unitronics | visilogic_oplc_ide | * | cpe:2.3:a:unitronics:visilogic_oplc_ide:*:*:*:*:*:*:*:* |
www.securityfocus.com/bid/77571
www.zerodayinitiative.com/advisories/ZDI-15-573
www.zerodayinitiative.com/advisories/ZDI-15-577
www.zerodayinitiative.com/advisories/ZDI-15-578
www.zerodayinitiative.com/advisories/ZDI-15-579
www.zerodayinitiative.com/advisories/ZDI-15-580
ics-cert.us-cert.gov/advisories/ICSA-15-274-02