AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. An unauthenticated remote user could use a specially crafted database connection configuration file to execute an arbitrary process on the server machine.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
aveva indusoft web studio 8.1 |
||
aveva indusoft web studio 8.0 |
||
aveva indusoft web studio 7.1 |
||
aveva indusoft web studio 6.1 |
||
aveva intouch machine edition 2014 r2 |