Vulnerabilities > Aveva > Edge > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-12-16 CVE-2021-42796 Unspecified vulnerability in Aveva Edge 2020/8.1
An issue was discovered in ExecuteCommand() in AVEVA Edge (formerly InduSoft Web Studio) versions R2020 and prior that allows unauthenticated arbitrary commands to be executed.
network
low complexity
aveva
critical
9.8
2018-11-02 CVE-2018-17914 Unspecified vulnerability in Aveva products
InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2.
network
low complexity
aveva
critical
9.8
2018-11-02 CVE-2018-17916 Out-of-bounds Write vulnerability in Aveva products
InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2.
network
low complexity
aveva CWE-787
critical
9.8