Vulnerabilities > Aveva > Wonderware Intouch Access Anywhere

DATE CVE VULNERABILITY TITLE RISK
2017-04-20 CVE-2017-5160 Inadequate Encryption Strength vulnerability in Aveva Wonderware Intouch Access Anywhere 11.5.2
An Inadequate Encryption Strength issue was discovered in Schneider Electric Wonderware InTouch Access Anywhere, version 11.5.2 and prior.
network
high complexity
aveva CWE-326
5.3
2017-04-20 CVE-2017-5158 Information Exposure vulnerability in Aveva Wonderware Intouch Access Anywhere 11.5.2
An Information Exposure issue was discovered in Schneider Electric Wonderware InTouch Access Anywhere, version 11.5.2 and prior.
network
low complexity
aveva CWE-200
critical
9.8
2017-04-20 CVE-2017-5156 Cross-Site Request Forgery (CSRF) vulnerability in Aveva Wonderware Intouch Access Anywhere 11.5.2
A Cross-Site Request Forgery issue was discovered in Schneider Electric Wonderware InTouch Access Anywhere, version 11.5.2 and prior.
network
low complexity
aveva CWE-352
8.8