Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

aveva intouch 2014 r2 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-2018-10628
AVEVA InTouch 2014 R2 SP1 and prior, InTouch 2017, InTouch 2017 Update 1, and InTouch 2017 Update 2 allow an unauthenticated user to send a specially crafted packet that could overflow the buffer on a locale not using a dot floating point separator. Exploitation could allow remot...
Aveva Intouch 2017 -Aveva Intouch 2014 R2
10
CVSSv2
CVE-2019-6543
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. Code is executed under the program runtime privileges, which could lead to the compromise of the machine.
Aveva Indusoft Web Studio 8.1Aveva Indusoft Web Studio 8.0Aveva Indusoft Web Studio 7.1Aveva Indusoft Web Studio 6.1Aveva Intouch Machine Edition 2014 R2
5
CVSSv2
CVE-2019-6545
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. An unauthenticated remote user could use a specially crafted database connection configuration file to execute an arbitrary proce...
Aveva Indusoft Web Studio 8.1Aveva Indusoft Web Studio 8.0Aveva Indusoft Web Studio 7.1Aveva Indusoft Web Studio 6.1Aveva Intouch Machine Edition 2014 R2
10
CVSSv2
CVE-2018-17914
InduSoft Web Studio versions before 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions before 2017 SP2. This vulnerability could allow an unauthenticated user to remotely execute code with the same privileges as that of the InduSoft Web Studio or InTouch Ed...
Aveva Indusoft Web Studio 8.0Aveva Indusoft Web Studio 7.1Aveva Indusoft Web Studio 8.1Aveva Indusoft Web Studio 6.1Aveva Edge 8.1Aveva Intouch Machine Edition 2014 R2
10
CVSSv2
CVE-2018-17916
InduSoft Web Studio versions before 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions before 2017 SP2. A remote attacker could send a carefully crafted packet to exploit a stack-based buffer overflow vulnerability during tag, alarm, or event related action...
Aveva Indusoft Web Studio 8.0Aveva Indusoft Web Studio 7.1Aveva Indusoft Web Studio 8.1Aveva Indusoft Web Studio 6.1Aveva Edge 8.1Aveva Intouch Machine Edition 2014 R2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook