QwikSec

Security Database

CVE

CWE

Training

CVE-2014-9192

Published: Dec 11, 2014

Modified: Jul 25, 2025

PUBLISHED

Description

Integer overflow in Trihedral Engineering VTScada (formerly VTS) 6.5 through 9.x before 9.1.20, 10.x before 10.2.22, and 11.x before 11.1.07 allows remote attackers to cause a denial of service (server crash) via a crafted request, which triggers a large memory allocation.

Vendor	Product	Versions
Trihedral Engineering	VTS	affected `6.5 - < 9.1.19` affected `10 - < 10.2.21`

Weaknesses (CWE)

References

https://www.cisa.gov/news-events/ics-advisories/icsa-14-343-02

vdb-entry

x_refsource_BID

http://www.trihedral.com/help/#Op_Welcome/Wel_UpgradeNotes.htm

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.