An unauthorized user with network access and the decryption key could decrypt sensitive data, such as usernames and passwords.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NGe Proficy Historian
APPGe7.0 – 2023 (bez)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Powiązane podatności
CVE-2022-46732CRITICAL9.8ten sam produkt
Even if the authentication fails for local service authentication, the requested command could still execute r...
CVE-2022-43494HIGH7.5ten sam produkt
An unauthorized user could be able to read any file on the system, potentially exposing sensitive informatio...
CVE-2022-46331HIGH7.5ten sam produkt
An unauthorized user could possibly delete any file on the system.
CVE-2022-46660HIGH7.5ten sam produkt
An unauthorized user could alter or write files with full control over the path and content of the file. ...
CVE-2023-5908CRITICAL9.1PL ✓ten sam vendor
Buffer overflow w KEPServerEX umożliwiający crash lub wyciek danych