Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aveva vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-28685
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000). User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious ...
Aveva Aveva Edge
7.8
CVSSv3
CVE-2022-28686
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000). User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious ...
Aveva Aveva Edge
7.8
CVSSv3
CVE-2022-28687
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000). User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious ...
Aveva Aveva Edge
7.8
CVSSv3
CVE-2022-28688
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000). User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious ...
Aveva Aveva Edge
9.8
CVSSv3
CVE-2023-1256
The listed versions of AVEVA Plant SCADA and AVEVA Telemetry Server are vulnerable to an improper authorization exploit which could allow an unauthenticated user to remotely read data, cause denial of service, and tamper with alarm states.
Aveva Telemetry Server 2020r2
Aveva Aveva Plant Scada 2020r2
Aveva Aveva Plant Scada 2023
7.5
CVSSv3
CVE-2022-23854
AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Aveva Intouch Access Anywhere 2020
Aveva Intouch Access Anywhere
1 EDB exploit
7.8
CVSSv3
CVE-2021-38410
AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.4.6 are vulnerable to DLL hijacking through an uncontrolled search path element, which may allow an attacker control to one or more locations in the search path.
Aveva System Platform 2020
Aveva Platform Common Services 4.5.2
Aveva Platform Common Services 4.5.1
Aveva Platform Common Services 4.5.0
Aveva Platform Common Services 4.4.6
Aveva Batch Management 2020
Aveva Enterprise Data Management 2020
Aveva Manufacturing Execution System 2020
Aveva Mobile Operator 2020
Aveva Work Tasks 2020
9.9
CVSSv3
CVE-2022-1467
Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. ...
Aveva Plant Scada Access Anywhere
Aveva Intouch Access Anywhere
5.5
CVSSv3
CVE-2022-0835
AVEVA System Platform 2020 stores sensitive information in cleartext, which may allow access to an attacker or a low-privileged user.
Aveva System Platform 2020
7.2
CVSSv3
CVE-2021-32981
AVEVA System Platform versions 2017 through 2020 R2 P01 uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the...
Aveva System Platform
Aveva System Platform 2020
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »