Lucene search
+L

55 matches found

BDU FSTEC
BDU FSTEC
added 2023/04/20 12:0 a.m.8 views

The vulnerability of the AVEVA Plant SCADA system and the AVEVA Telemetry Server, caused by deficiencies in authentication procedures, allows a intruder to trigger a service failure.

The vulnerabilities of the AVEVA Plant SCADA system and the AVEVA Telemetry Server are due to deficiencies in the authentication process. Exploiting these vulnerabilities allows a malicious actor, who may act remotely without having undergone identity verification, to cause service failures...

10CVSS7.8AI score0.00678EPSS
Exploits0References4
NVD
NVD
added 2023/03/16 7:15 p.m.35 views

CVE-2023-1256

The listed versions of AVEVA Plant SCADA and AVEVA Telemetry Server are vulnerable to an improper authorization exploit which could allow an unauthenticated user to remotely read data, cause denial of service, and tamper with alarm states...

9.8CVSS9.5AI score0.00678EPSS
Exploits0References1
OSV
OSV
added 2023/03/16 7:15 p.m.7 views

CVE-2023-1256

The listed versions of AVEVA Plant SCADA and AVEVA Telemetry Server are vulnerable to an improper authorization exploit which could allow an unauthenticated user to remotely read data, cause denial of service, and tamper with alarm states...

9.8CVSS7.3AI score0.00678EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/16 6:33 p.m.7 views

CVE-2023-1256 CVE-2023-1256

The listed versions of AVEVA Plant SCADA and AVEVA Telemetry Server are vulnerable to an improper authorization exploit which could allow an unauthenticated user to remotely read data, cause denial of service, and tamper with alarm states...

9.8CVSS7.1AI score0.00678EPSS
Exploits0References1
CVE
CVE
added 2023/03/16 6:33 p.m.69 views

CVE-2023-1256

CVE-2023-1256 affects AVEVA Plant SCADA and AVEVA Telemetry Server with an improper authorization (CWE-285) vulnerability. An unauthenticated remote attacker could read data, cause DoS, and tamper with alarm states. Affected products/versions include AVEVA Plant SCADA (2023, 2020R2 Update 10 and ...

9.8CVSS9.5AI score0.00678EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/03/16 6:33 p.m.35 views

CVE-2023-1256 CVE-2023-1256

The listed versions of AVEVA Plant SCADA and AVEVA Telemetry Server are vulnerable to an improper authorization exploit which could allow an unauthenticated user to remotely read data, cause denial of service, and tamper with alarm states...

9.8CVSS9.5AI score0.00678EPSS
Exploits0References1
NCSC
NCSC
added 2023/03/16 12:0 a.m.36 views

Vulnerabilities fixed in Aveva products

Aveva has fixed vulnerabilities in inTouch, PlantScada and Telemery Server. A malicious party could exploit the vulnerabilities to carry out attacks that could result in the following categories of damage: Denial-of-Service DoS Data manipulation. Remote code execution User rights Access to system...

9.8CVSS8.5AI score0.99019EPSS
Exploits13
CNNVD
CNNVD
added 2023/03/15 12:0 a.m.40 views

AVEVA Plant SCADA Access Anywhere 授权问题漏洞

AVEVA Plant SCADA Access Anywhere is a reliable, flexible and high-performance Supervisory Control and Data Acquisition SCADA software solution for industrial process customers from AVEVA. The true value and power of Plant SCADA can be accessed in any compatible web browser. An authorization issu...

9.8CVSS8.4AI score0.00678EPSS
Exploits0References3
NVD
NVD
added 2020/01/24 6:15 p.m.31 views

CVE-2020-6965

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850 Version 2.X, a vulnerability...

9.9CVSS9.3AI score0.0113EPSS
Exploits0References2
OSV
OSV
added 2020/01/24 6:15 p.m.4 views

CVE-2020-6966

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control, which may allow an...

10CVSS7.8AI score0.02221EPSS
Exploits0References2
NVD
NVD
added 2020/01/24 6:15 p.m.33 views

CVE-2020-6966

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control, which may allow an...

10CVSS9.8AI score0.02221EPSS
Exploits0References2
OSV
OSV
added 2020/01/24 6:15 p.m.7 views

CVE-2020-6965

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850 Version 2.X, a vulnerability...

9.9CVSS7.4AI score0.0113EPSS
Exploits0References2
Prion
Prion
added 2020/01/24 6:15 p.m.17 views

Remote code execution

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control, which may allow an...

10CVSS9.6AI score0.02221EPSS
Exploits0References2Affected Software6
OSV
OSV
added 2020/01/24 5:15 p.m.3 views

CVE-2020-6961

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station CSCS Versions 1.X, a vulnerability exists in the affected products that could allow...

10CVSS7.3AI score0.01619EPSS
Exploits0References2
OSV
OSV
added 2020/01/24 5:15 p.m.5 views

CVE-2020-6963

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, the affected products utilized hard coded SMB credentials, which may allow an attacker to remotely execut...

10CVSS6AI score0.02746EPSS
Exploits0References2
NVD
NVD
added 2020/01/24 5:15 p.m.23 views

CVE-2020-6964

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X and CARESCAPE Central Station CSCS Versions 2.X, the integrated service for keyboard switching of the...

8.6CVSS9.1AI score0.0136EPSS
Exploits0References2
NVD
NVD
added 2020/01/24 5:15 p.m.28 views

CVE-2020-6961

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station CSCS Versions 1.X, a vulnerability exists in the affected products that could allow...

10CVSS9.3AI score0.01619EPSS
Exploits0References2
NVD
NVD
added 2020/01/24 5:15 p.m.43 views

CVE-2020-6962

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station CSCS Versions 1.X CARESCAPE Central Station CSCS Versions 2.X, B450 Version 2.X, B6...

10CVSS9.7AI score0.04932EPSS
Exploits0References2
NVD
NVD
added 2020/01/24 5:15 p.m.28 views

CVE-2020-6963

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, the affected products utilized hard coded SMB credentials, which may allow an attacker to remotely execut...

10CVSS9.7AI score0.02746EPSS
Exploits0References2
Prion
Prion
added 2020/01/24 5:15 p.m.21 views

Authentication flaw

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X and CARESCAPE Central Station CSCS Versions 2.X, the integrated service for keyboard switching of the...

5CVSS9AI score0.0136EPSS
Exploits0References2Affected Software6
Rows per page
Query Builder