Softwaretoolbox Top Server — known CVE vulnerabilities
Every CVE whose affected-product data names Softwaretoolbox Top Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2020-27265 — CVSS 9.8 (critical): KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All…
CVE-2022-2825 — CVSS 9.8 (critical): This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0…
CVE-2023-5908 — CVSS 9.1 (critical): KEPServerEX is vulnerable to a buffer overflow which may allow an attacker to crash the product being accessed or leak information.
CVE-2020-27263 — CVSS 9.1 (critical): KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All…
CVE-2020-27267 — CVSS 9.1 (critical): KEPServerEX v6.0 to v6.9, ThingWorx Kepware Server v6.8 and v6.9, ThingWorx Industrial Connectivity (all versions), OPC-Aggregator (all…
CVE-2022-2848 — CVSS 9.1 (critical): This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0…
CVE-2023-5909 — CVSS 7.5 (high): KEPServerEX does not properly validate certificates from clients which may allow unauthenticated users to connect.
CVE-2013-2804 — CVSS 7.1 (high): The DNP Master Driver in Software Toolbox TOP Server before 5.12.140.0 allows remote attackers to cause a denial of service (master-station…