Skip to main content

Intouch

7 CVEs product

Monthly

CVE-2023-34982 HIGH This Week

This external control vulnerability, if exploited, could allow a local OS-authenticated user with standard privileges to delete files with System privilege on the machine where these products are. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Batch Management Communication Drivers Edge Enterprise Licensing +9
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-33873 HIGH This Week

This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user with standard privileges to escalate to System privilege on the machine where these products are. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Batch Management Communication Drivers Edge Enterprise Licensing +9
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2015-1009 LOW Monitor

Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local. Rated low severity (CVSS 1.7), this vulnerability is low attack complexity. No vendor patch available.

Schneider Electric Information Disclosure Web Studio Intouch
NVD
CVSS 2.0
1.7
EPSS
0.1%
CVE-2012-3005 MEDIUM This Month

Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier, as used in Wonderware Application Server, Wonderware Information Server, Foxboro Control Software, InFusion. Rated medium severity (CVSS 6.9). No vendor patch available.

Information Disclosure Foxboro Control Software Infusion Ce Fe Scada Intouch Intouch Wonderware Application Server +3
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2012-3847 MEDIUM This Month

slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Intouch Wonderware Application Server
NVD
CVSS 2.0
5.0
EPSS
0.3%
CVE-2012-0258 MEDIUM This Month

Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier,. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Archestra Application Object Toolkit Foxboro Control Software Infusion Control Edition +5
NVD
CVSS 2.0
6.8
EPSS
2.7%
CVE-2012-0257 MEDIUM This Month

Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier,. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Archestra Application Object Toolkit Foxboro Control Software Infusion Control Edition +5
NVD
CVSS 2.0
6.8
EPSS
2.7%
EPSS 0% CVSS 7.1
HIGH This Week

This external control vulnerability, if exploited, could allow a local OS-authenticated user with standard privileges to delete files with System privilege on the machine where these products are. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Batch Management Communication Drivers +11
NVD
EPSS 0% CVSS 7.8
HIGH This Week

This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user with standard privileges to escalate to System privilege on the machine where these products are. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Batch Management Communication Drivers +11
NVD
EPSS 0% CVSS 1.7
LOW Monitor

Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local. Rated low severity (CVSS 1.7), this vulnerability is low attack complexity. No vendor patch available.

Schneider Electric Information Disclosure Web Studio +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier, as used in Wonderware Application Server, Wonderware Information Server, Foxboro Control Software, InFusion. Rated medium severity (CVSS 6.9). No vendor patch available.

Information Disclosure Foxboro Control Software Infusion Ce Fe Scada +5
NVD
EPSS 0% CVSS 5.0
MEDIUM This Month

slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Intouch Wonderware Application Server
NVD
EPSS 3% CVSS 6.8
MEDIUM This Month

Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier,. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Archestra Application Object Toolkit +7
NVD
EPSS 3% CVSS 6.8
MEDIUM This Month

Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier,. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Archestra Application Object Toolkit +7
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy