Skip to main content

Thingworx Platform

4 CVEs product

Monthly

CVE-2018-20092 HIGH This Week

PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Thingworx Platform
NVD
CVSS 3.0
7.5
EPSS
2.2%
CVE-2018-17218 MEDIUM This Month

An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Thingworx Platform
NVD
CVSS 3.1
5.4
EPSS
0.6%
CVE-2018-17217 HIGH This Week

An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Thingworx Platform
NVD
CVSS 3.0
7.5
EPSS
0.8%
CVE-2018-17216 MEDIUM This Month

An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Thingworx Platform
NVD
CVSS 3.0
6.5
EPSS
1.1%
EPSS 2% CVSS 7.5
HIGH This Week

PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Thingworx Platform
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Thingworx Platform
NVD
EPSS 1% CVSS 7.5
HIGH This Week

An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Thingworx Platform
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Thingworx Platform
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy