Vulnerabilidades en AVEVA
50 resultadosCVE-2022-23854HIGHAVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated userEPSS 46.0%CVE-2022-28685HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802EPSS 17.2%CVE-2022-36969MEDIUMThis vulnerability allows remote attackers to disclose sensitive information on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2EPSS 13.7%CVE-2025-61937CRITICALAVEVA Process Optimization Code InjectionEPSS 1.5%CVE-2019-6525—AVEVA Wonderware System Platform 2017 Update 2 and prior uses an ArchestrA network user account for authentication of system processes and iEPSS 1.4%CVE-2019-13537—The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerabiEPSS 1.3%CVE-2021-32981HIGHAVEVA System Platform Path TraversalEPSS 1.2%CVE-2021-33008HIGHAVEVA System Platform Missing Authentication for Critical FunctionEPSS 1.1%CVE-2021-33010HIGHAVEVA System Platform Uncaught ExceptionEPSS 1.0%CVE-2022-28687HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802EPSS 1.0%CVE-2022-1467HIGHAVEVA InTouch Access Anywhere Exposure of Resource to Wrong SphereEPSS 0.9%CVE-2023-1256CRITICALCVE-2023-1256EPSS 0.7%CVE-2022-28686HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802EPSS 0.6%CVE-2022-36970HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge 20.0 Build: 4201.2111.1802.0000EPSS 0.6%CVE-2022-28688HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802EPSS 0.6%CVE-2021-32977HIGHAVEVA System Platform Improper Verification of Cryptographic SignatureEPSS 0.6%CVE-2023-34348HIGHImproper Check or Handling of Exceptional Conditions in Aveva PI Server EPSS 0.6%CVE-2023-31274MEDIUMMissing Release of Resource after Effective Lifetime vulnerability in Aveva PI Server EPSS 0.5%CVE-2024-7113HIGHAllocation of Resources Without Limits or Throttling in AVEVA SuiteLink ServerEPSS 0.5%CVE-2021-32985HIGHAVEVA System Platform Origin Validation ErrorEPSS 0.5%