Vulnerabilities > PTC

DATE CVE VULNERABILITY TITLE RISK
2018-12-17 CVE-2018-20092 Path Traversal vulnerability in PTC Thingworx Platform
PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request.
network
low complexity
ptc CWE-22
5.0
2018-10-01 CVE-2018-17218 Cross-site Scripting vulnerability in PTC Thingworx Platform
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2.
network
ptc CWE-79
3.5
2018-10-01 CVE-2018-17217 Use of Hard-coded Credentials vulnerability in PTC Thingworx Platform
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2.
network
low complexity
ptc CWE-798
5.0
2018-10-01 CVE-2018-17216 Information Exposure vulnerability in PTC Thingworx Platform
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2.
network
low complexity
ptc CWE-200
4.0
2015-03-09 CVE-2015-2061 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in PTC Creo View
Heap-based buffer overflow in the browser plugin for PTC Creo View allows remote attackers to execute arbitrary code via vectors involving setting a large buffer to an unspecified attribute.
network
low complexity
ptc CWE-119
7.5
2014-12-08 CVE-2014-9267 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in PTC Isoview
Heap-based buffer overflow in the PTC IsoView ActiveX control allows remote attackers to execute arbitrary code via a crafted ViewPort property value.
network
ptc CWE-119
6.8
2007-10-18 CVE-2007-4600 Permissions, Privileges, and Access Controls vulnerability in PTC Mathcad
The "Protect Worksheet" functionality in Mathsoft Mathcad 12 through 13.1, and PTC Mathcad 14, implements file access restrictions via a protection element in a gzipped XML file, which allows attackers to bypass these restrictions by removing this element.
local
low complexity
ptc CWE-264
4.6