Vulnerability Details CVE-2013-2827
An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client machine and execute this code via the ProjectURL property value.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.634
EPSS Ranking 98.3%
CVSS Severity
CVSS v2 Score 7.5
References
Products affected by CVE-2013-2827
-
cpe:2.3:a:wellintech:kingalarm&event:2.0.2
-
cpe:2.3:a:wellintech:kinggraphic:3.1
-
cpe:2.3:a:wellintech:kingscada:3.1