CVSS: 7.1EPSS: 0%CPEs: 40EXPL: 0CVE-2023-34982 – AVEVA Operations Control Logger External Control of File Name or Path
https://notcve.org/view.php?id=CVE-2023-34982
15 Nov 2023 — This external control vulnerability, if exploited, could allow a local OS-authenticated user with standard privileges to delete files with System privilege on the machine where these products are installed, resulting in denial of service. Esta vulnerabilidad de control externo, si se explota, podría permitir que un usuario local autenticado en el sistema operativo con privilegios estándar elimine archivos con privilegios de sistema en la máquina donde están instalados estos productos, lo que resultaría en u... • https://www.aveva.com/en/support-and-success/cyber-security-updates • CWE-73: External Control of File Name or Path CWE-610: Externally Controlled Reference to a Resource in Another Sphere •
CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0CVE-2023-33873 – AVEVA Operations Control Logger Execution with Unnecessary Privileges
https://notcve.org/view.php?id=CVE-2023-33873
15 Nov 2023 — This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user with standard privileges to escalate to System privilege on the machine where these products are installed, resulting in complete compromise of the target machine. Esta vulnerabilidad de escalada de privilegios, si se explota, en la nube permite que un usuario local autenticado en el sistema operativo con privilegios estándar escale a privilegios del sistema en la máquina donde están instalados estos productos, ... • https://www.aveva.com/en/support-and-success/cyber-security-updates • CWE-250: Execution with Unnecessary Privileges •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-1009
https://notcve.org/view.php?id=CVE-2015-1009
01 Aug 2015 — Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local users to obtain sensitive information by reading a file. Vulnerabilidad en Schneider Electric InduSoft Web Studio en versiones anteriores a 7.1.3.5 Patch 5 y Wonderware InTouch Machine Edition hasta la versión 7.1 SP3 Patch 4, utiliza almacenamiento de contraseñas en texto plano para project-window, lo que permite a... • http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-100-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3005
https://notcve.org/view.php?id=CVE-2012-3005
26 Jul 2012 — Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier, as used in Wonderware Application Server, Wonderware Information Server, Foxboro Control Software, InFusion CE/FE/SCADA, InBatch, and Wonderware Historian, allows local users to gain privileges via a Trojan horse DLL in an unspecified directory. Una vulnerabilidad de ruta de búsqueda no confiable en Invensys Wonderware InTouch 2012 y anteriores, tal como se utiliza en el servidor de aplicaciones Wonderware, Wonderware Infor... • http://www.us-cert.gov/control_systems/pdf/ICSA-12-177-02.pdf •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2012-3847
https://notcve.org/view.php?id=CVE-2012-3847
05 Jul 2012 — slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long Unicode string, a different vulnerability than CVE-2012-3007. slssvc.exe en Invensys Wonderware SuiteLink en Invensys InTouch 2012 y Wonderware Application Server 2012, permite a atacantes remotos causar una denegación de servicio (consumo de recursos) a través de una larga cadena Unicode, una vulnerabilidad diferen... • http://secunia.com/advisories/49173 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 3%CPEs: 12EXPL: 0CVE-2012-0257
https://notcve.org/view.php?id=CVE-2012-0257
02 Apr 2012 — Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier, InFusion CE/FE/SCADA 2.5 and earlier, Wonderware Information Server 4.5 and earlier, ArchestrA Application Object Toolkit 3.2 and earlier, and InTouch 10.0 through 10.5 might allow remote attackers to execute arbitrary code via a long string to the Open member, leading to a function-pointer overwrite. Desbordamie... • http://osvdb.org/80891 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 3%CPEs: 12EXPL: 0CVE-2012-0258
https://notcve.org/view.php?id=CVE-2012-0258
02 Apr 2012 — Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier, InFusion CE/FE/SCADA 2.5 and earlier, Wonderware Information Server 4.5 and earlier, ArchestrA Application Object Toolkit 3.2 and earlier, and InTouch 10.0 through 10.5 might allow remote attackers to execute arbitrary code via a long string to the AddFile member. Desbordamiento de búfer basado en memoria dinámic... • http://osvdb.org/80891 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 29%CPEs: 2EXPL: 2CVE-2008-2005 – WonderWare SuiteLink 2.0 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2008-2005
06 May 2008 — The SuiteLink Service (aka slssvc.exe) in WonderWare SuiteLink before 2.0 Patch 01, as used in WonderWare InTouch 8.0, allows remote attackers to cause a denial of service (NULL pointer dereference and service shutdown) and possibly execute arbitrary code via a large length value in a Registration packet to TCP port 5413, which causes a memory allocation failure. El servicio SuiteLink Service (también conocido como slssvc.exe) en WonderWare SuiteLink anterior a 2.0 Patch 01, como el usado en WonderWare InTo... • https://www.exploit-db.com/exploits/6474 • CWE-399: Resource Management Errors •
CVSS: 9.0EPSS: 1%CPEs: 1EXPL: 0CVE-2007-6033
https://notcve.org/view.php?id=CVE-2007-6033
20 Nov 2007 — Invensys Wonderware InTouch 8.0 creates a NetDDE share with insecure permissions (Everyone/Full Control), which allows remote authenticated attackers, and possibly anonymous users, to execute arbitrary programs. Invensys Wonderware InTouch versión 8.0, crea un recurso compartido NetDDE con permisos no seguros (Everyone/Full Control), que permite a atacantes autenticados remotos, y posiblemente a usuarios anónimos, ejecutar programas arbitrarios. • http://osvdb.org/42398 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 3CVE-2006-0088 – InTouch 0.5.1 Alpha - User Variable SQL Injection
https://notcve.org/view.php?id=CVE-2006-0088
05 Jan 2006 — SQL injection vulnerability in intouch.lib.php in inTouch 0.5.1 Alpha allows remote attackers to execute arbitrary SQL commands via the user parameter. Vulnerabilidad de inyección de SQL en intouch.lib.php de inTouch 0.5.1 Alpha permite a atacantes remotos ejecutar órdenes SQL de su elección mediante el parámetro "user". • https://www.exploit-db.com/exploits/27003 •