Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2016-9360

An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian Version 6.0 and prior versions. An attacker may be able to retrieve user passwords if he or she has access to an authenticated session.

  • Published: Feb 13, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-9360
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.7
  • AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L

CVSS v2:

  • Severity: Low
  • Score: 4.4
  • AV:L/AC:M/Au:N/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

Software From Fixed in
ge / cimplicity - 9.0.x
ge / historian - 6.0.x
ge / ifix - 5.8.x