CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-8840

A remote attacker could send a carefully crafted packet in InduSoft Web Studio v8.1 and prior versions, and/or InTouch Machine Edition 2017 v8.1 and prior versions during a tag, alarm, or event related action such as read and write, which may allow remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.353

EPSS Ranking 96.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

Products affected by CVE-2018-8840

Indusoft » Web Studio » Version: 6.1

cpe:2.3:a:indusoft:web_studio:6.1
Indusoft » Web Studio » Version: 7.0

cpe:2.3:a:indusoft:web_studio:7.0
Indusoft » Web Studio » Version: 7.1

cpe:2.3:a:indusoft:web_studio:7.1
Indusoft » Web Studio » Version: 8.0

cpe:2.3:a:indusoft:web_studio:8.0
Indusoft » Web Studio » Version: 8.1

cpe:2.3:a:indusoft:web_studio:8.1
Industrial-Software » Intouch Machine Edition 2017 » Version: 8.1

cpe:2.3:a:industrial-software:intouch_machine_edition_2017:8.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-8840

Products

Pricing

Contact Us