3 matches found
CVE-2023-33873
CVE-2023-33873 describes a local privilege-escalation on AVEVA Operations Control Logger and related AVEVA products (e.g., AVEVA System Platform, Historian, Application Server, InTouch, and more listed in the ICS advisory). The vulnerability allows a local OS-authenticated user with standard priv...
CVE-2023-34982
CVE-2023-34982 affects AVEVA Operations Control Logger (external control of file name or path). A local OS-authenticated user with standard privileges could delete files with System privileges, leading to denial of service. The CVE is discussed across multiple sources (NVD entry and AVEVA/ICS adv...
CVE-2023-1256
CVE-2023-1256 affects AVEVA Plant SCADA and AVEVA Telemetry Server with an improper authorization (CWE-285) vulnerability. An unauthenticated remote attacker could read data, cause DoS, and tamper with alarm states. Affected products/versions include AVEVA Plant SCADA (2023, 2020R2 Update 10 and ...