Vulnerabilities > GE > Proficy Historian > 7.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-18 | CVE-2022-38469 | Insufficiently Protected Credentials vulnerability in GE Proficy Historian An unauthorized user with network access and the decryption key could decrypt sensitive data, such as usernames and passwords. | 7.5 |
| 2023-01-18 | CVE-2022-43494 | Unspecified vulnerability in GE Proficy Historian An unauthorized user could be able to read any file on the system, potentially exposing sensitive information. | 6.5 |
| 2023-01-18 | CVE-2022-46331 | Unspecified vulnerability in GE Proficy Historian An unauthorized user could possibly delete any file on the system. | 8.1 |
| 2023-01-18 | CVE-2022-46660 | Unrestricted Upload of File with Dangerous Type vulnerability in GE Proficy Historian An unauthorized user could alter or write files with full control over the path and content of the file. | 6.5 |
| 2023-01-18 | CVE-2022-46732 | Unspecified vulnerability in GE Proficy Historian Even if the authentication fails for local service authentication, the requested command could still execute regardless of authentication status. | 9.8 |