CVE-2023-1256

🗓️ 16 Mar 2023 18:33:52Reported by icscertType

CVE-2023-1256: AVEVA Plant SCADA and Telemetry Server vulnerabilit

Reporter	Title	Published	Views	Family All 13
BDU FSTEC	The vulnerability of the AVEVA Plant SCADA system and the AVEVA Telemetry Server, caused by deficiencies in authentication procedures, allows a intruder to trigger a service failure.	20 Apr 202300:00	–	bdu_fstec
Circl	CVE-2023-1256	16 Mar 202321:30	–	circl
CNNVD	AVEVA Plant SCADA Access Anywhere 授权问题漏洞	15 Mar 202300:00	–	cnnvd
Cvelist	CVE-2023-1256 CVE-2023-1256	16 Mar 202318:33	–	cvelist
EUVD	EUVD-2023-23525	3 Oct 202520:07	–	euvd
ICS	AVEVA Plant SCADA and AVEVA Telemetry Server	29 Mar 202318:39	–	ics
NCSC	Vulnerabilities fixed in Aveva products	16 Mar 202300:00	–	ncsc
NVD	CVE-2023-1256	16 Mar 202319:15	–	nvd
OSV	CVE-2023-1256	16 Mar 202319:15	–	osv
Prion	Authorization	16 Mar 202319:15	–	prion

NVD

Vulners

Node

aveva aveva_plant_scadaMatch2020r2-

aveva aveva_plant_scadaMatch2020r2update_10

aveva aveva_plant_scadaMatch2023-

aveva aveva_plant_scadaMatch2023update_10

aveva telemetry_serverMatch2020r2-

aveva telemetry_serverMatch2020r2sp1

[
  {
    "vendor": "AVEVA",
    "product": "AVEVA Plant SCADA",
    "versions": [
      {
        "status": "affected",
        "version": "2023 Update 10"
      }
    ]
  },
  {
    "vendor": "AVEVA",
    "product": "AVEVA Plant SCADA",
    "versions": [
      {
        "status": "affected",
        "version": "2020R2 Update 10"
      }
    ]
  },
  {
    "vendor": "AVEVA",
    "product": "AVEVA Telemetry Server",
    "versions": [
      {
        "status": "affected",
        "version": "2020 R2 SP1"
      }
    ]
  }
]

Source	Link
cisa	www.cisa.gov/news-events/ics-advisories/icsa-23-073-04

17 Jun 2026 05:27Current

9.5High risk

Vulners AI Score9.5

CVSS 3.19.8

EPSS0.00678

SSVC