Cogentdatahub Cogent Datahub — known CVE vulnerabilities
Every CVE whose affected-product data names Cogentdatahub Cogent Datahub, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2011-3493 — CVSS 10.0 (critical): Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to…
CVE-2016-2288 — CVSS 7.8 (high): Cogent DataHub before 7.3.10 allows local users to gain privileges by leveraging the user or guest role to modify a file.
CVE-2014-2352 — CVSS 7.8 (high): The directory specifier can include designators that can be used to traverse the directory path. Exploiting this vulnerability may enable…
CVE-2014-3789 — CVSS 7.5 (high): GetPermissions.asp in Cogent Real-Time Systems Cogent DataHub before 7.3.5 allows remote attackers to execute arbitrary commands via…
CVE-2013-0682 — CVSS 7.5 (high): Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub…
CVE-2014-3788 — CVSS 7.5 (high): Heap-based buffer overflow in the Web Server in Cogent Real-Time Systems Cogent DataHub before 7.3.5 allows remote attackers to execute…
CVE-2013-0680 — CVSS 7.5 (high): Stack-based buffer overflow in the web server in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade…
CVE-2014-2353 — CVSS 7.1 (high): Cross-site scripting (XSS) vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to inject arbitrary web script or HTML via…
CVE-2013-0683 — CVSS 7.1 (high): The DataSim and DataPid demonstration clients in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade…
CVE-2014-2354 — CVSS 6.0 (medium): Cogent DataHub before 7.3.5 does not use a salt during password hashing, which makes it easier for context-dependent attackers to obtain…
CVE-2012-0310 — CVSS 5.8 (medium): CRLF injection vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier…
CVE-2011-3501 — CVSS 5.0 (medium): Integer overflow in Cogent DataHub 7.1.1.63 and earlier allows remote attackers to cause a denial of service (crash) via a negative or…
CVE-2013-0681 — CVSS 5.0 (medium): Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub…
CVE-2011-3500 — CVSS 5.0 (medium): Directory traversal vulnerability in the web server in Cogent DataHub 7.1.1.63 and earlier allows remote attackers to read arbitrary files…
CVE-2011-3502 — CVSS 5.0 (medium): The web server in Cogent DataHub 7.1.1.63 and earlier allows remote attackers to obtain the source code of executable files via a request…
CVE-2012-0309 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20…