Lucene search
K

43 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-14269

Malware in sbrugna...

5.3CVSS5.6AI score0.00549EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-14265

Malware in sbrugna...

8.8CVSS8.6AI score0.00956EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-14267

Malware in sbrugna...

9.8CVSS9.2AI score0.02419EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/04/03 12:0 a.m.6 views

The vulnerability of extensions for providing access to InTouch Access Anywhere and Plant SCADA Access Anywhere, related to errors in processing the relative path to the catalog, allows a hacker to gain read access to files located outside the protected web server.

The vulnerability of extensions for providing access to InTouch Access Anywhere and Plant SCADA Access Anywhere lies in errors in processing the relative path to the catalog. Exploiting this vulnerability could allow a malicious actor to gain read access to files located outside the protected web...

7.8CVSS7.2AI score0.45957EPSS
Exploits5References5Affected Software2
NVD
NVD
added 2022/12/23 9:15 p.m.13 views

CVE-2022-23854

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server...

7.5CVSS0.45957EPSS
Exploits5References3
Prion
Prion
added 2022/12/23 9:15 p.m.21 views

Path traversal

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server...

5CVSS7.5AI score0.45957EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2022/12/23 8:50 p.m.41 views

CVE-2022-23854

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server...

7.5CVSS7.8AI score0.45957EPSS
Exploits5References3
Vulnrichment
Vulnrichment
added 2022/12/23 8:50 p.m.9 views

CVE-2022-23854

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server...

7.5CVSS7.5AI score0.45957EPSS
Exploits5References3
CVE
CVE
added 2022/12/23 8:50 p.m.108 views

CVE-2022-23854

CVE-2022-23854 affects AVEVA InTouch Access Anywhere Secure Gateway (2020 R2 and earlier). The vulnerability is a path traversal issue allowing an unauthenticated remote attacker with network access to read files outside the secure gateway web server (local file inclusion/vector). Affected produc...

7.5CVSS7.5AI score0.45957EPSS
Exploits5References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/23 12:0 a.m.7 views

PT-2022-6508 · Aveva · Aveva Intouch Access Anywhere

Name of the Vulnerable Software and Affected Versions: AVEVA InTouch Access Anywhere versions 2020 R2 and older Description: The issue is related to errors in processing relative path to directory, which could allow an unauthenticated user with network access to read files on the system outside o...

7.8CVSS7.4AI score0.45957EPSS
Exploits5References12
ICS
ICS
added 2022/12/08 12:0 a.m.145 views

AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere

1. EXECUTIVE SUMMARY --------- Begin Update A Part 1 of 6 --------- CVSS v3 9.8 --------- End Update A Part 1 of 6 --------- ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: AVEVA --------- Begin Update A Part 2 of 6 --------- Equipment: InTouch Access...

9.8CVSS9.6AI score0.99019EPSS
Exploits13References5
CISA
CISA
added 2022/12/08 12:0 a.m.32 views

CISA Releases Three Industrial Control Advisories

CISA has released three 3 Industrial Control Systems ICS advisories on 08 December 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories f...

3.2AI score
Exploits0References3
Packet Storm
Packet Storm
added 2022/11/11 12:0 a.m.331 views

AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 Path Traversal

Exploit Title: AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 - Path Traversal Exploit Author: Jens Regel CRISEC IT-Security Date: 11/11/2022 CVE: CVE-2022-23854 Version: Access Anywhere Secure Gateway versions 2020 R2 and older Proof of Concept: GET...

1AI score0.45957EPSS
Exploits5
Exploit DB
Exploit DB
added 2022/11/11 12:0 a.m.162 views

AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 - Path Traversal

Exploit Title: AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 - Path Traversal Exploit Author: Jens Regel CRISEC IT-Security Date: 11/11/2022 CVE: CVE-2022-23854 Version: Access Anywhere Secure Gateway versions 2020 R2 and older Proof of Concept: GET...

7.5CVSS7.7AI score0.45957EPSS
Exploits5
0day.today
0day.today
added 2022/11/11 12:0 a.m.325 views

AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 - Path Traversal Vulnerability

Exploit Title: AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 - Path Traversal Exploit Author: Jens Regel CRISEC IT-Security CVE: CVE-2022-23854 Version: Access Anywhere Secure Gateway versions 2020 R2 and older Proof of Concept: GET...

7.5CVSS1.4AI score0.45957EPSS
Exploits5
0day.today
0day.today
added 2022/09/09 12:0 a.m.377 views

InTouch Access Anywhere Secure Gateway 2020 R2 Path Traversal Vulnerability

Title: ====== AVEVA InTouch Access Anywhere Secure Gateway - Path Traversal Author: ======= Jens Regel, CRISEC IT-Security CVE: ==== CVE-2022-23854 Advisory: ========= https://crisec.de/advisory-aveva-intouch-access-anywhere-secure-gateway-path-traversal/ Timeline: ========= 25.06.2021...

7.5CVSS7.8AI score0.45957EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/09/09 12:0 a.m.278 views

InTouch Access Anywhere Secure Gateway 2020 R2 Path Traversal

Title: ====== AVEVA InTouch Access Anywhere Secure Gateway - Path Traversal Author: ======= Jens Regel, CRISEC IT-Security CVE: ==== CVE-2022-23854 Advisory: ========= https://crisec.de/advisory-aveva-intouch-access-anywhere-secure-gateway-path-traversal/ Timeline: ========= 25.06.2021...

0.4AI score0.45957EPSS
Exploits5
NVD
NVD
added 2022/05/23 8:16 p.m.34 views

CVE-2022-1467

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

9.9CVSS0.00873EPSS
Exploits0References2
Prion
Prion
added 2022/05/23 8:16 p.m.18 views

Command injection

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

8.5CVSS9.4AI score0.00873EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/05/23 7:17 p.m.29 views

CVE-2022-1467 AVEVA InTouch Access Anywhere Exposure of Resource to Wrong Sphere

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

7.4CVSS9.7AI score0.00873EPSS
Exploits0References2
Rows per page
Query Builder