CVE-2015-0979

SCADA Engine BACnet OPC Server < 2.1.359.22 - Remote Code Execution via SOAP Web Interface

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via a crafted packet.

References (1)

Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-15-069-03

Scores

EPSS 0.0456
EPSS Percentile 90.5%

Details

CWE
CWE-119
Status published
Products (1)
scadaengine/bacnet_opc_server < 2.1.359.22
Published Mar 14, 2015
Tracked Since Feb 18, 2026