CVE-2014-2355— GE Proficy HMI/SCADA CIMPLICITY CimView

EPSS 0.11% · P30 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-2355

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

GE Proficy HMI/SCADA CIMPLICITY CimView

Source: NVD (National Vulnerability Database)

Vulnerability Description

The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

内存缓冲区边界内操作的限制不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

GE Proficy HMI/SCADA-CIMPLICITY 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GE Proficy HMI/SCADA-CIMPLICITY是美国通用电气（GE）公司的一款基于客户端/服务器的HMI/SCADA解决方案。该方案能够在企业各个层级之间采集并共享实时和历史数据，实现过程、设备、资源监控的操作可视化。 GE Proficy HMI/SCADA-CIMPLICITY 8.2及之前版本的CimView和CimEdit组件中存在安全漏洞。远程攻击者可借助特制的CIMPLICITY screen文件利用该漏洞获取权限。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
GE	Proficy HMI/SCADA–CIMPLICITY	0 ~ 8.2	-

II. Public POCs for CVE-2014-2355

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2014-2355

请登录查看更多情报信息。

Same Patch Batch · GE · 2015-01-17 · 3 CVEs total

CVE-2014-5418		GE Multilink Uncontrolled Resource Consumption
CVE-2014-5419		GE Multilink Use of Hard-coded Cryptographic Key

IV. Related Vulnerabilities

Same vendor: GE

Same weakness: CWE-119

V. Comments for CVE-2014-2355

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2014-2355— GE Proficy HMI/SCADA CIMPLICITY CimView

I. Basic Information for CVE-2014-2355

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2014-2355

III. Intelligence Information for CVE-2014-2355

Same Patch Batch · GE · 2015-01-17 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2014-2355

Leave a comment