CVE-2018-17914

🗓️ 02 Nov 2018 13:00:00Reported by icscertType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 44 Views

CVE-2018-17914 InduSoft Web Studio & InTouch Edge HMI vul

Reporter	Title	Published	Views	Family All 7
CNVD	Schneider Electric InduSoft Web Studio and InTouch Edge HMI Code Execution Vulnerability	6 Nov 201800:00	–	cnvd
Cvelist	CVE-2018-17914	2 Nov 201813:00	–	cvelist
EUVD	EUVD-2018-9655	7 Oct 202500:30	–	euvd
ICS	AVEVA InduSoft Web Studio and InTouch Edge HMI (formerly InTouch Machine Edition)	1 Nov 201800:00	–	ics
NVD	CVE-2018-17914	2 Nov 201813:29	–	nvd
OSV	CVE-2018-17914	2 Nov 201813:29	–	osv
Prion	Code injection	2 Nov 201813:29	–	prion

NVD

Vulners

Node

aveva indusoft_web_studioMatch6.1sp5

aveva indusoft_web_studioMatch6.1sp6_p3

aveva indusoft_web_studioMatch7.1

aveva indusoft_web_studioMatch7.1sp1

aveva indusoft_web_studioMatch7.1sp2

aveva indusoft_web_studioMatch7.1sp3

aveva indusoft_web_studioMatch7.1sp3_p1

aveva indusoft_web_studioMatch7.1sp3_p2

aveva indusoft_web_studioMatch7.1sp3_p3

aveva indusoft_web_studioMatch7.1sp3_p4

aveva indusoft_web_studioMatch7.1sp3_p5

aveva indusoft_web_studioMatch7.1sp3_p6

aveva indusoft_web_studioMatch7.1sp3_p7

aveva indusoft_web_studioMatch7.1sp3_p8

aveva indusoft_web_studioMatch7.1sp3_p9

aveva indusoft_web_studioMatch8.0

aveva indusoft_web_studioMatch8.0p1

aveva indusoft_web_studioMatch8.0p2

aveva indusoft_web_studioMatch8.0p3

aveva indusoft_web_studioMatch8.0sp1

aveva indusoft_web_studioMatch8.0sp1_p1

aveva indusoft_web_studioMatch8.0sp2

aveva indusoft_web_studioMatch8.0sp2_p1

aveva indusoft_web_studioMatch8.1

aveva indusoft_web_studioMatch8.1p1

aveva indusoft_web_studioMatch8.1sp1

aveva indusoft_web_studioMatch8.1sp1_p1

Node

aveva edgeMatch8.1-

aveva edgeMatch8.1sp1

aveva intouch_machine_edition_2014Matchr2

[
  {
    "product": "InduSoft Web Studio, and InTouch Edge HMI (formerly InTouch Machine Edition)",
    "vendor": "unknown",
    "versions": [
      {
        "status": "affected",
        "version": "InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2"
      }
    ]
  }
]

Source	Link
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-305-01
tenable	www.tenable.com/security/research/tra-2018-34

21 Nov 2024 03:55Current

9.5High risk

Vulners AI Score9.5

CVSS 3.19.8

CVSS 210

EPSS0.03705

CWE-258