Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:50 p.m.14 views

CVE-2022-1467

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

9.9CVSS6.8AI score0.00873EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/05/23 7:17 p.m.7 views

CVE-2022-1467 AVEVA InTouch Access Anywhere Exposure of Resource to Wrong Sphere

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

7.4CVSS6.8AI score0.00873EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/05/23 7:17 p.m.30 views

CVE-2022-1467 AVEVA InTouch Access Anywhere Exposure of Resource to Wrong Sphere

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

7.4CVSS9.7AI score0.00873EPSS
Exploits0References2
CVE
CVE
added 2022/05/23 7:17 p.m.115 views

CVE-2022-1467

CVE-2022-1467 affects AVEVA InTouch Access Anywhere and AVEVA Plant SCADA Access Anywhere (all versions). The root cause is a Windows language bar overlay that can be manipulated to launch an OS command prompt from within the browser, creating a context-escape from the hosted application to the O...

9.9CVSS8.7AI score0.00873EPSS
Exploits0References2Affected Software2
ICS
ICS
added 2022/05/10 12:0 a.m.68 views

AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Equipment: AVEVA InTouch Access Anywhere and AVEVA Plant SCADA Access Anywhere Vulnerability: Exposure of Resource to Wrong Sphere 2. RISK EVALUATION Successful exploitation of this vulnerability...

9.9CVSS9AI score0.00873EPSS
Exploits0References5
Rows per page
Query Builder