CVE-2014-0750

GE Proficy HMI/SCADA - CIMPLICITY < 8.2 - Remote Code Execution via Directory Traversal in WebView CimWeb

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-0750. PoCs published by Metasploit, amisto0x07, Z0mb1E, juan vazquez, including Metasploit module exploits/windows/scada/ge_proficy_cimplicity_gefebt.

AI-analyzed exploit summary This Metasploit module exploits a remote code execution vulnerability in GE Proficy CIMPLICITY's gefebt.exe component via malicious BCL files. It leverages WebDAV or SMB to deliver payloads and execute arbitrary code on the target system.

Description

Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted HTTP request, aka ZDI-CAN-1622.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/31987

This Metasploit module exploits a remote code execution vulnerability in GE Proficy CIMPLICITY's gefebt.exe component via malicious BCL files. It leverages WebDAV or SMB to deliver payloads and execute arbitrary code on the target system.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: GE Proficy CIMPLICITY 7.5 (embedded CimWebServer)
No auth needed
Prerequisites: Network access to the target's CimWebServer · WebClient service enabled or external SMB server for payload delivery
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by amisto0x07, Z0mb1E, juan vazquez · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/scada/ge_proficy_cimplicity_gefebt.rb

This Metasploit module exploits a vulnerability in GE Proficy CIMPLICITY's gefebt.exe component to achieve remote code execution by delivering malicious BCL files via a WebDAV server or external SMB service. It generates and serves payloads to execute arbitrary code on the target system.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: GE Proficy CIMPLICITY 7.5 (embedded CimWebServer)
No auth needed
Prerequisites: Target must have the WebClient service enabled or an external SMB service accessible · Network access to the CIMPLICITY CimWebServer on port 80
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-14-023-01
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/65124

Scores

EPSS 0.7022
EPSS Percentile 99.3%

Details

CWE
CWE-22
Status published
Products (9)
ge/intelligent_platforms_proficy_hmi\%2fscada_cimplicity < 8.2
ge/intelligent_platforms_proficy_hmi\/scada_cimplicity 4.01
ge/intelligent_platforms_proficy_hmi\/scada_cimplicity 7.5
ge/intelligent_platforms_proficy_hmi\/scada_cimplicity 8.0
ge/intelligent_platforms_proficy_hmi\/scada_cimplicity 8.1
ge/intelligent_platforms_proficy_hmi\/scada_cimplicity 8.2
ge/intelligent_platforms_proficy_process_systems_with_cimplicity
GE/Proficy HMI/SCADA - CIMPLICITY 4.01 - 8.2
GE/Proficy Process Systems with CIMPLICITY all versions
Published Jan 25, 2014
Tracked Since Feb 18, 2026