Controlsystemworks: >> Csworks >> 1.4.3860.0 Security Vulnerabilities
SQL injection vulnerability in the LiveData service in CSWorks before 2.5.5233.0 allows remote attackers to execute arbitrary SQL commands via vectors related to pathnames contained in web API requests.
CVSS Score
7.5
EPSS Score
0.005
Published
2014-05-20
The LiveData Service in CSWorks before 2.0.4115.1 allows remote attackers to cause a denial of service (service crash) via crafted TCP packets.
CVSS Score
5.0
EPSS Score
0.007
Published
2011-11-03