NotCVE - vendor:"Invensys" product:"Intouch" version:"2012"

4 results (0.004 seconds)

CVSS: 7.1EPSS: 0%CPEs: 40EXPL: 0

CVE-2023-34982 – AVEVA Operations Control Logger External Control of File Name or Path

https://notcve.org/view.php?id=CVE-2023-34982

15 Nov 2023 — This external control vulnerability, if exploited, could allow a local OS-authenticated user with standard privileges to delete files with System privilege on the machine where these products are installed, resulting in denial of service. Esta vulnerabilidad de control externo, si se explota, podría permitir que un usuario local autenticado en el sistema operativo con privilegios estándar elimine archivos con privilegios de sistema en la máquina donde están instalados estos productos, lo que resultaría en u... • https://www.aveva.com/en/support-and-success/cyber-security-updates • CWE-73: External Control of File Name or Path CWE-610: Externally Controlled Reference to a Resource in Another Sphere •

CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0

CVE-2023-33873 – AVEVA Operations Control Logger Execution with Unnecessary Privileges

https://notcve.org/view.php?id=CVE-2023-33873

15 Nov 2023 — This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user with standard privileges to escalate to System privilege on the machine where these products are installed, resulting in complete compromise of the target machine. Esta vulnerabilidad de escalada de privilegios, si se explota, en la nube permite que un usuario local autenticado en el sistema operativo con privilegios estándar escale a privilegios del sistema en la máquina donde están instalados estos productos, ... • https://www.aveva.com/en/support-and-success/cyber-security-updates • CWE-250: Execution with Unnecessary Privileges •

CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0

CVE-2012-3005

https://notcve.org/view.php?id=CVE-2012-3005

26 Jul 2012 — Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier, as used in Wonderware Application Server, Wonderware Information Server, Foxboro Control Software, InFusion CE/FE/SCADA, InBatch, and Wonderware Historian, allows local users to gain privileges via a Trojan horse DLL in an unspecified directory. Una vulnerabilidad de ruta de búsqueda no confiable en Invensys Wonderware InTouch 2012 y anteriores, tal como se utiliza en el servidor de aplicaciones Wonderware, Wonderware Infor... • http://www.us-cert.gov/control_systems/pdf/ICSA-12-177-02.pdf •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2012-3847

https://notcve.org/view.php?id=CVE-2012-3847

05 Jul 2012 — slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long Unicode string, a different vulnerability than CVE-2012-3007. slssvc.exe en Invensys Wonderware SuiteLink en Invensys InTouch 2012 y Wonderware Application Server 2012, permite a atacantes remotos causar una denegación de servicio (consumo de recursos) a través de una larga cadena Unicode, una vulnerabilidad diferen... • http://secunia.com/advisories/49173 • CWE-399: Resource Management Errors •