Kepserver enterprise

This hub aggregates every CVE we track for Kepserver enterprise, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 9 most recently published vulnerabilities affecting Kepserver enterprise.

• CVE-2023-5909Improper Validation of Certificate with Host Mismatch in PTC KEPServerEx7.5Nov 30, 2023
• CVE-2023-5908Heap Based Buffer Overflow in PTC KEPServerEx9.1Nov 30, 2023
• CVE-2022-2848This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The s...9.1Mar 29, 2023
• CVE-2022-2825This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The s...9.8Mar 29, 2023
• CVE-2023-0754 The affected products are vulnerable to an integer overflow or wraparound, which could  allow an attacker to crash the server and remotely execute arbitrary code. 9.8Feb 23, 2023
• CVE-2023-0755 The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code. 9.8Feb 23, 2023
• CVE-2020-27265KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All versions, Rockwell Automation KEPServer Enterprise, GE Digit...9.8Jan 13, 2021
• CVE-2020-27263KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All versions, Rockwell Automation KEPServer Enterprise, GE Digit...9.1Jan 13, 2021
• CVE-2020-27267KEPServerEX v6.0 to v6.9, ThingWorx Kepware Server v6.8 and v6.9, ThingWorx Industrial Connectivity (all versions), OPC-Aggregator (all versions), Rockwell Automation KEPServer Enterprise, GE Digit...9.1Jan 13, 2021