This external control vulnerability, if exploited, could allow a local OS-authenticated user with standard privileges to delete files with System privilege on the machine where these products are installed, resulting in denial of service.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HAveva Batch Management
APPAveva2020< 2020Aveva Communication Drivers
APPAveva2020< 2020Aveva Edge
APPAveva≤ 20.1.101Aveva Enterprise Licensing
APPAveva≤ 3.7.002Aveva Historian
APPAveva2020< 2020Aveva Intouch
APPAveva2020< 2020Aveva Manufacturing Execution System
APPAveva2020< 2020Aveva Mobile Operator
APPAveva2020< 2020Aveva Plant Scada
APPAveva2020< 2020Aveva Recipe Management
APPAveva2020< 2020Aveva System Platform
APPAveva2020< 2020Aveva Telemetry Server
APPAveva2020r2Aveva Work Tasks
APPAveva2020< 2020
Related vulnerabilities
AVEVA Edge: nieuwierzytelnione zdalne wykonanie poleceń (RCE) w ExecuteCommand()
The listed versions of AVEVA Plant SCADA and AVEVA Telemetry Server are vulnerable to an improper authorizatio...
InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) version...
InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) version...
The vulnerability, if exploited, could allow a malicious entity with access to the file system to achieve arb...