Rapidscada Rapid Scada — known CVE vulnerabilities
Every CVE whose affected-product data names Rapidscada Rapid Scada, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2024-21764 — CVSS 9.8 (critical): In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, the product uses hard-coded credentials, which may allow an attacker…
CVE-2024-21852 — CVSS 8.8 (high): In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can supply a malicious configuration file by utilizing a…
CVE-2018-5313 — CVSS 7.8 (high): A vulnerability allows local attackers to escalate privilege on Rapid Scada 5.5.0 because of weak C:\SCADA permissions. The specific flaw…
CVE-2020-22722 — CVSS 7.8 (high): Rapid Software LLC Rapid SCADA 5.8.0 is affected by a local privilege escalation vulnerability in the ScadaAgentSvc.exe executable file. An…
CVE-2024-22016 — CVSS 7.8 (high): In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an authorized user can write directly to the Scada directory. This may…
CVE-2024-47221 — CVSS 7.5 (high): CheckUser in ScadaServerEngine/MainLogic.cs in Rapid SCADA through 5.8.4 allows an empty password.
CVE-2024-22096 — CVSS 6.5 (medium): In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can append path traversal characters to the filename when…
CVE-2024-21869 — CVSS 6.2 (medium): In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, the affected product stores plaintext credentials in various places…
CVE-2024-21794 — CVSS 5.4 (medium): In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can redirect users to malicious pages through the login…
CVE-2024-21866 — CVSS 5.3 (medium): In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, the affected product responds back with an error message containing…