Skip to main content

Intouch 2017

2 CVEs product

Monthly

CVE-2021-32942 MEDIUM PATCH This Month

The vulnerability could expose cleartext credentials from AVEVA InTouch Runtime 2020 R2 and all prior versions (WindowViewer) if an authorized, privileged user creates a diagnostic memory dump of the. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intouch 2017 Intouch 2020
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2018-10628 CRITICAL PATCH Act Now

AVEVA InTouch 2014 R2 SP1 and prior, InTouch 2017, InTouch 2017 Update 1, and InTouch 2017 Update 2 allow an unauthenticated user to send a specially crafted packet that could overflow the buffer on. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

RCE Buffer Overflow Stack Overflow Intouch 2014 Intouch 2017
NVD
CVSS 3.0
9.8
EPSS
5.4%
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

The vulnerability could expose cleartext credentials from AVEVA InTouch Runtime 2020 R2 and all prior versions (WindowViewer) if an authorized, privileged user creates a diagnostic memory dump of the. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intouch 2017 Intouch 2020
NVD
EPSS 5% CVSS 9.8
CRITICAL PATCH Act Now

AVEVA InTouch 2014 R2 SP1 and prior, InTouch 2017, InTouch 2017 Update 1, and InTouch 2017 Update 2 allow an unauthenticated user to send a specially crafted packet that could overflow the buffer on. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

RCE Buffer Overflow Stack Overflow +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy