Skip to main content

Intouch Access Anywhere

2 CVEs product

Monthly

CVE-2022-23854 HIGH POC THREAT This Week

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Intouch Access Anywhere
NVD Exploit-DB
CVSS 3.1
7.5
EPSS
46.0%
CVE-2022-1467 CRITICAL Act Now

Windows OS can be configured to overlay a “language bar” on top of any application. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Microsoft Command Injection Information Disclosure Intouch Access Anywhere Plant Scada Access Anywhere
NVD
CVSS 3.1
9.9
EPSS
0.9%
EPSS 46% CVSS 7.5
HIGH POC THREAT This Week

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Intouch Access Anywhere
NVD Exploit-DB
EPSS 1% CVSS 9.9
CRITICAL Act Now

Windows OS can be configured to overlay a “language bar” on top of any application. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Microsoft Command Injection Information Disclosure +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy