Lucene search
IcscertCVELIST:CVE-2022-2896HistoryAug 31, 2022 - 8:54 p.m.
CVE-2022-2896 Measuresoft ScadaPro Server Use After Free
2022-08-3120:54:55
CWE-121
icscert
www.cve.org
1
measuresoft
scadapro server
use after free
vulnerability
all versions
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
60.2%
Measuresoft ScadaPro Server (All Versions) allows use after free while processing a specific project file.
CNA Affected
[
{
"product": "ScadaPro Server",
"vendor": "Measuresoft",
"versions": [
{
"status": "affected",
"version": "All Versions"
}
]
}
]Related
prion
prion
Double free
2022-08-31 21:15:00
zdi
zdi
cve
cve
CVE-2022-2896
2022-08-31 21:15:08
nvd
nvd
CVE-2022-2896
2022-08-31 21:15:08
ics
ics
Measuresoft ScadaPro Server and Client
2022-08-23 12:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
60.2%
Related for CVELIST:CVE-2022-2896