Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:26 a.m.6 views

CVE-2024-6456

AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially engineered by a miscreant into opening a specially crafted URL...

8.5CVSS7.8AI score0.00423EPSS
Exploits0References1
NVD
NVD
added 2024/08/15 9:15 p.m.18 views

CVE-2024-6456

AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially engineered by a miscreant into opening a specially crafted URL...

8.5CVSS0.00423EPSS
Exploits0References1
CVE
CVE
added 2024/08/15 8:10 p.m.46 views

CVE-2024-6456

CVE-2024-6456 describes a SQL Injection vulnerability in AVEVA Historian Server. Public sources in the connected documents indicate that an attacker could exploit the issue by enticing a user to open a specially crafted URL via the interactive Historian REST Interface, allowing the execution of S...

8.5CVSS7.4AI score0.00423EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/15 8:10 p.m.20 views

CVE-2024-6456 SQL Injection vulnerability in AVEVA Historian Server

AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially engineered by a miscreant into opening a specially crafted URL...

8.5CVSS0.00423EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/15 8:10 p.m.14 views

CVE-2024-6456 SQL Injection vulnerability in AVEVA Historian Server

AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially engineered by a miscreant into opening a specially crafted URL...

8.5CVSS7.8AI score0.00423EPSS
Exploits0References1
ICS
ICS
added 2024/08/15 6:0 a.m.16 views

AVEVA Historian Web Server

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION : Exploitable remotely/low attack complexity Vendor : AVEVA Equipment : Historian Server Vulnerability : SQL Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an authenticated user to get read and write...

8.5CVSS7.3AI score0.00423EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/08/15 12:0 a.m.5 views

PT-2024-5850 · Aveva · Aveva Historian Server

Name of the Vulnerable Software and Affected Versions: AVEVA Historian Server affected versions not specified Description: The issue is related to the lack of protection against malicious SQL commands. If exploited, it could allow a remote attacker to execute arbitrary code under the privileges o...

9.4CVSS8.4AI score0.00423EPSS
Exploits0References8
ICS
ICS
added 2021/08/19 12:0 a.m.96 views

ICSA-21-231-01_AVEVA SuiteLink Server

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Software, LLC Equipment: SuiteLink Server Vulnerabilities: Heap-based Buffer Overflow, Null Pointer Dereference, Improper Handling of Exceptional Conditions 2. RISK EVALUATION Successful...

9.8CVSS8.7AI score0.0093EPSS
Exploits0References2
Rows per page
Query Builder