SCADA Family for Nessus

ID	Name	Severity
73644	Advantech WebAccess Default Credential Check	high
73643	Advantech WebAccess < 7.2-2014.06.06 Multiple Vulnerabilities	high
73642	Advantech WebAccess Stored Cross-Site Scripting	low
73641	Advantech WebAccess Multiple BWOCXRUN.OCX ActiveX Vulnerabilities	high
73303	Ecava IntegraXor < 4.1.4410 Information Disclosure	medium
72708	Mitsubishi Electric Automation MC-WorX 8.x ActiveX Control Remote Code Execution	high
72703	StruxureWare SCADA Expert ClearSCADA Unspecified Vulnerability	medium
72702	StruxureWare SCADA Expert ClearSCADA Detection	info
72707	Mitsubishi Electric Automation MC-WorX Suite Detection	info
72558	3S CoDeSys Runtime Toolkit NULL Pointer Dereference (uncredentialed check)	medium
72557	3S CoDeSys Runtime Toolkit NULL Pointer Dereference (credentialed check)	medium
72556	3S CODESYS Development System V2 Installed (Windows)	info
72486	Cogent DataHub < 7.3.4 Malformed POST Request Buffer Overflow RCE	high
72620	TURCK BL20/BL67 Hardcoded Admin Account	critical
72201	StruxureWare SCADA Expert ClearSCADA < 2013 R2 Remote DoS	medium
72107	Ecava IntegraXor < 4.1.4369 Project Directory Information Disclosure	medium
72108	Ecava IntegraXor < 4.1.4390 Buffer Overflow	high
70921	Schneider Electric Accutech Manager 'RFManagerService' SQL Injection	critical
70760	Schneider Electric InduSoft Web Studio Arbitrary Script Execution	critical
70592	KEPServerEX < 5.12.140.0 Denial of Service	high
70591	KEPServerEX Detection	info
70558	ClearSCADA Web Server Detection	info
70556	Cogent DataHub Tunnel/Mirror Service Detection	info
70557	Cogent DataHub < 7.3.0 Multiple Vulnerabilities	high
70531	Siemens SCALANCE X-200 Web Session Hijacking	high
70530	Siemens SCALANCE X-200 Authentication Bypass	critical
70559	ClearSCADA Web Server Remote Denial of Service	high
70416	ProSoft RadioLinx ControlScape PRNG Weakness	high
70415	ProSoft RadioLinx ControlScape Install Detection	info
70351	RuggedCom RuggedOS < 3.12.2 Multiple Vulnerabilities	high
70292	WellinTech KingView ActiveX Multiple Arbitrary File Overwrite Vulnerabilities	medium
67144	Tridium Niagara AX Web Server Multiple Vulnerabilities	high
67143	Tridium Niagara AX Web Server Directory Traversal 'config.bog' Disclosure Remote Compromise	high
67142	Tridium Niagara AX Web Server Detection	info
66805	CoDeSys Gateway Service < 2.3.9.28 Use-After-Free	critical
66761	Mitsubishi MX Component ActiveX Remote Code Execution	critical
66406	Clorius Controls ISC SCADA Information Disclosure	medium
66405	Clorius Controls ISC SCADA Detection	info
65656	Honeywell Multiple Products HscRemoteDepoy.dll ActiveX Control Arbitrary Code Execution	medium
65603	Schneider Electric Accutech Manager RFManagerService Heap Overflow	critical
65602	Schneider Electric Accutech Manager Detection	info
65195	CoDeSys Gateway Service < 2.3.9.27 Multiple Vulnerabilities	critical
65194	CoDeSys Unprotected Gateway Service	high
65193	CoDeSys Gateway Service Detection	info
64683	Siemens SIMATIC RF-MANAGER KeyHelp.ocx Buffer Overflow	medium
64682	Siemens SIMATIC RF-MANAGER Detection	info
64630	Ecava IntegraXor < 4.00.4283 ActiveX Remote Buffer Overflow	high
64487	RuggedCom RuggedOS < 3.12.1 Web UI Multiple Security Vulnerabilities	critical
64297	Schneider Electric Interactive Graphical SCADA System (IGSS) Unsupported Version	critical
64296	Schneider Electric Interactive Graphical SCADA System dc.exe Unspecified Buffer Overflow	critical

Detections

Analytics

SCADA Family for Nessus

high

high

low

high

medium

high

medium

info

info

medium

medium

info

high

critical

medium

medium

high

critical

critical

high

info

info

info

high

high

critical

high

high

info

high

medium

high

high

info

critical

critical

medium

info

medium

critical

info

critical

high

info

medium

info

high

critical

critical

critical