← volver
CVE-2020-37143

ProficySCADA for iOS 5.0.25920 - 'Password' Denial of Service

CVSS 4.6 MEDIUMEPSS 0.3%CWE-770
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 4.6EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
05 feb 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
ProficySCADA for iOS 5.0.25920 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the password input field. Attackers can overwrite the password field with 257 bytes of repeated characters to trigger an application crash and prevent successful authentication.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →