Filtered by vendor Wonderware
Subscriptions
Filtered by product Intouch
Subscriptions
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2015-1009 | 2 Indusoft, Wonderware | 2 Web Studio, Intouch | 2024-11-21 | N/A |
Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local users to obtain sensitive information by reading a file. | ||||
CVE-2008-2005 | 1 Wonderware | 2 Intouch, Suitelink | 2024-11-21 | N/A |
The SuiteLink Service (aka slssvc.exe) in WonderWare SuiteLink before 2.0 Patch 01, as used in WonderWare InTouch 8.0, allows remote attackers to cause a denial of service (NULL pointer dereference and service shutdown) and possibly execute arbitrary code via a large length value in a Registration packet to TCP port 5413, which causes a memory allocation failure. | ||||
CVE-2007-6033 | 1 Wonderware | 1 Intouch | 2024-11-21 | 8.8 High |
Invensys Wonderware InTouch 8.0 creates a NetDDE share with insecure permissions (Everyone/Full Control), which allows remote authenticated attackers, and possibly anonymous users, to execute arbitrary programs. |
Page 1 of 1.