An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian Version 6.0 and prior versions. An attacker may be able to retrieve user passwords if he or she has access to an authenticated session.
oryginał ENCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:LGe Cimplicity
APPGe≤ 9.0Ge Historian
APPGe≤ 6.0Ge Ifix
APPGe≤ 5.8
Powiązane podatności
XXE in GE Proficy Cimplicity GDS versions 9.0 R2, 9.5, 10.0
GE CIMPLICITY 2023 is by a process control vulnerability, which could allow a local attacker to insert malici...
GE Digital Proficy iFIX 2022, GE Digital Proficy iFIX v6.1, and GE Digital Proficy iFIX v6.5 are vulnerable t...
GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls code flow starti...
GE CIMPICITY versions 2022 and prior is vulnerable to an out-of-bounds write, which could allow an attac...