Lucene search
K
AvevaIndusoft Web Studio

5 matches found

CVE
CVE
added 2019/02/13 1:0 a.m.114 views

CVE-2019-6545

CVE-2019-6545 affects AVEVA InduSoft Web Studio prior to 8.1 SP3 and InTouch Edge HMI prior to 2017 Update. An unauthenticated remote attacker can trigger arbitrary process execution on the server by supplying a specially crafted database connection configuration file. Public sources document a r...

7.5CVSS8.7AI score0.13858EPSS
CVE
CVE
added 2019/02/13 1:0 a.m.94 views

CVE-2019-6543

Summary: CVE-2019-6543 affects AVEVA InduSoft Web Studio versions before 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) before 2017 Update. The flaw allows code to be executed with program runtime privileges due to missing authentication for a critical function (and related resou...

10CVSS9.4AI score0.17287EPSS
CVE
CVE
added 2018/07/19 7:0 p.m.62 views

CVE-2018-10620

Affected software: Aveva InduSoft Web Studio (v8.1 and v8.1SP1) and InTouch Machine Edition (v2017 8.1 and v2017 8.1 SP1). Root cause: stack-based buffer overflow triggered by remote-crafted network packets during tag, alarm, or event actions (read/write). Impact: remote code execution or applica...

9.8CVSS9.5AI score0.04252EPSS
CVE
CVE
added 2018/11/02 1:0 p.m.59 views

CVE-2018-17916

Summary: CVE-2018-17916 affects Schneider Electric/AVEVA InduSoft Web Studio (pre-8.1 SP2) and InTouch Edge HMI (pre-2017 SP2). A remote attacker can trigger a stack-based buffer overflow during tag/alarm/event actions (read/write) via a crafted packet, potentially executing arbitrary code with t...

10CVSS9.6AI score0.03733EPSS
CVE
CVE
added 2018/11/02 1:0 p.m.47 views

CVE-2018-17914

CVE-2018-17914 affects Schneider Electric InduSoft Web Studio <8.1 SP2 and InTouch Edge HMI

10CVSS9.5AI score0.04567EPSS