CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17914

InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2. This vulnerability could allow an unauthenticated user to remotely execute code with the same privileges as that of the InduSoft Web Studio or InTouch Edge HMI (formerly InTouch Machine Edition) runtime.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.039

EPSS Ranking 87.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

Products affected by CVE-2018-17914

Aveva » Edge » Version: 8.1

cpe:2.3:a:aveva:edge:8.1
Aveva » Indusoft Web Studio » Version: 6.1

cpe:2.3:a:aveva:indusoft_web_studio:6.1
Aveva » Indusoft Web Studio » Version: 7.1

cpe:2.3:a:aveva:indusoft_web_studio:7.1
Aveva » Indusoft Web Studio » Version: 8.0

cpe:2.3:a:aveva:indusoft_web_studio:8.0
Aveva » Indusoft Web Studio » Version: 8.1

cpe:2.3:a:aveva:indusoft_web_studio:8.1
Aveva » Intouch Machine Edition 2014 » Version: r2

cpe:2.3:a:aveva:intouch_machine_edition_2014:r2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17914

Products

Pricing

Contact Us