CVE-2015-6478

Unitronics VisiLogic OPLC IDE < 9.8.02 - Improper Access Control to ActiveX Controls

Title source: llm
STIX 2.1

Description

Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls, which allows remote attackers to have an unspecified impact via a crafted web site.

References (7)

Core 7
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-578
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-579
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-580
Patch, Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-15-274-02
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-573
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-577
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/77571

Scores

EPSS 0.0155
EPSS Percentile 72.1%

Details

CWE
CWE-284
Status published
Products (1)
unitronics/visilogic_oplc_ide < 9.8.0.0
Published Nov 13, 2015
Tracked Since Feb 18, 2026