Lucene search
HistoryJan 17, 2015 - 2:59 a.m.
CVE-2014-2355
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.8%
The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file.
Affected configurations
Node
geintelligent_platforms_proficy_hmi\/scada_cimplicityRange≤8.2
Related
cvelist
cvelist
CVE-2014-2355
2015-01-17 02:00:00
prion
prion
Code injection
2015-01-17 02:59:00
ics
ics
GE Proficy HMI/SCADA CIMPLICITY CimView Memory Access Violation
2018-08-29 12:00:00
cve
cve
CVE-2014-2355
2015-01-17 02:59:00
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.8%
Related for NVD:CVE-2014-2355