Vulnerabilities > Aveva > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-09-24 | CVE-2020-13504 | SQL Injection vulnerability in Aveva Edna Enterprise Data Historian 3.0.1.2/7.5.4989.33053 Parameter AttFilterValue in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. | 7.5 |
2020-09-24 | CVE-2020-13501 | SQL Injection vulnerability in Aveva Edna Enterprise Data Historian 3.0.1.2/7.5.4989.33053 An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. | 7.5 |
2020-09-24 | CVE-2020-13500 | SQL Injection vulnerability in Aveva Edna Enterprise Data Historian 3.0.1.2/7.5.4989.33053 SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. | 7.5 |
2020-09-24 | CVE-2020-13499 | SQL Injection vulnerability in Aveva Edna Enterprise Data Historian 3.0.1.2/7.5.4989.33053 An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. | 7.5 |
2019-02-13 | CVE-2019-6545 | Unspecified vulnerability in Aveva Indusoft web Studio and Intouch Machine Edition 2014 AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. | 7.5 |