Skip to main content

Open Automation Software

5 CVEs product

Monthly

CVE-2024-11220 HIGH This Week

A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Open Automation Software
NVD
CVSS 4.0
8.5
EPSS
0.2%
CVE-2024-27201 MEDIUM POC This Month

An improper input validation vulnerability exists in the OAS Engine User Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Open Automation Software
NVD
CVSS 3.1
4.9
EPSS
0.7%
CVE-2024-24976 MEDIUM POC This Month

A denial of service vulnerability exists in the OAS Engine File Data Source Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Open Automation Software
NVD
CVSS 3.1
4.9
EPSS
0.9%
CVE-2024-22178 MEDIUM POC This Month

A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Open Automation Software
NVD
CVSS 3.1
4.9
EPSS
0.7%
CVE-2024-21870 MEDIUM POC This Month

A file write vulnerability exists in the OAS Engine Tags Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Open Automation Software
NVD
CVSS 3.1
4.9
EPSS
0.7%
EPSS 0% CVSS 8.5
HIGH This Week

A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Open Automation Software
NVD
EPSS 1% CVSS 4.9
MEDIUM POC This Month

An improper input validation vulnerability exists in the OAS Engine User Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Open Automation Software
NVD
EPSS 1% CVSS 4.9
MEDIUM POC This Month

A denial of service vulnerability exists in the OAS Engine File Data Source Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Open Automation Software
NVD
EPSS 1% CVSS 4.9
MEDIUM POC This Month

A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Open Automation Software
NVD
EPSS 1% CVSS 4.9
MEDIUM POC This Month

A file write vulnerability exists in the OAS Engine Tags Configuration functionality of Open Automation Software OAS Platform V19.00.0057. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Open Automation Software
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy