invensys

Top products

The 15 most recently published vulnerabilities affecting invensys.

• CVE-2014-5399Schneider Electric Wonderware SQL Injection7.5Aug 28, 2014
• CVE-2014-5398Schneider Electric Wonderware Input Validation2.1Aug 28, 2014
• CVE-2014-5397Schneider Electric Wonderware Cross-site Scripting7.5Aug 28, 2014
• CVE-2014-2381Schneider Electric Wonderware Inadequate Encryption Strength2.1Aug 28, 2014
• CVE-2014-2380Schneider Electric Wonderware Inadequate Encryption Strength7.8Aug 28, 2014
• CVE-2012-4709Invensys Wonderware InTouch HMI 2012 R2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption...6.9Oct 13, 2013
• CVE-2013-0688Cross-site scripting (XSS) vulnerability in Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal allows remote attackers to inject arbitrary web script or HTML via ...4.3May 9, 2013
• CVE-2013-0686Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of s...9.3May 9, 2013
• CVE-2013-0685Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal does not restrict unspecified size and amount values, which allows remote attackers to execute arbitrary code o...9.3May 9, 2013
• CVE-2013-0684SQL injection vulnerability in Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.7.5May 9, 2013
• CVE-2012-4710Invensys Wonderware Win-XML Exporter 1522.148.0.0 allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) ...9.3Apr 4, 2013
• CVE-2012-4693Invensys Wonderware InTouch 2012 R2 and earlier and Siemens ProcessSuite use a weak encryption algorithm for data in Ps_security.ini, which makes it easier for local users to discover passwords by ...1.9Dec 18, 2012
• CVE-2012-3005Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier, as used in Wonderware Application Server, Wonderware Information Server, Foxboro Control Software, InFusion CE/F...6.9Jul 26, 2012
• CVE-2012-3847slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long Un...5.0Jul 5, 2012
• CVE-2012-3007Stack-based buffer overflow in slssvc.exe before 58.x in Invensys Wonderware SuiteLink in the Invensys System Platform software suite, as used in InTouch/Wonderware Application Server IT before 10....5.0Jul 5, 2012