Every CVE whose affected-product data names Iconics Genesis32, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2011-5089 — CVSS 10.0 (critical): Buffer overflow in the Security Login ActiveX controls in ICONICS GENESIS32 8.05, 9.0, 9.1, and 9.2 and BizViz 8.05, 9.0, 9.1, and 9.2…
CVE-2020-12011 — CVSS 9.8 (critical): A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition or allow remote code…
CVE-2020-12007 — CVSS 9.8 (critical): A specially crafted communication packet sent to the affected devices could allow remote code execution and a denial-of-service condition…
CVE-2011-2089 — CVSS 9.3 (critical): Stack-based buffer overflow in the SetActiveXGUID method in the VersionInfo ActiveX control in GenVersion.dll 8.0.138.0 in the WebHMI…
CVE-2011-5088 — CVSS 9.3 (critical): The GENESIS32 IcoSetServer ActiveX control in ICONICS GENESIS32 9.21 and BizViz 9.21 configures the trusted zone on the basis of user…
CVE-2014-0758 — CVSS 9.3 (critical): An ActiveX control in GenLaunch.htm in ICONICS GENESIS32 8.0, 8.02, 8.04, and 8.05 allows remote attackers to execute arbitrary programs…
CVE-2020-12013 — CVSS 9.1 (critical): A specially crafted WCF client that interfaces to the may allow the execution of certain arbitrary SQL commands remotely. This affects…
CVE-2020-12009 — CVSS 7.5 (high): A specially crafted communication packet sent to the affected device could cause a denial-of-service condition due to a deserialization…
CVE-2020-12015 — CVSS 7.5 (high): A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition due to improper…
CVE-2012-3018 — CVSS 4.4 (medium): The lockout-recovery feature in the Security Configurator component in ICONICS GENESIS32 9.22 and earlier and BizViz 9.22 and earlier uses…