Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2023-34982

This external control vulnerability, if exploited, could allow a local OS-authenticated user with standard privileges to delete files with System privilege on the machine where these products are installed, resulting in denial of service.

  • Published: Nov 15, 2023
  • Updated: Dec 9, 2023
  • CVE: CVE-2023-34982
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.1
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWEs:

Software From Fixed in
aveva / system_platform 2020-r2_p01 2020-r2_p01.x
aveva / system_platform 2020-r2 2020-r2.x
aveva / system_platform 2020 2020.x
aveva / manufacturing_execution_system 2020 2020.x
aveva / mobile_operator 2020 2020.x
aveva / work_tasks 2020 2020.x
aveva / work_tasks 2020-update_1 2020-update_1.x
aveva / telemetry_server 2020r2 2020r2.x
aveva / telemetry_server 2020r2-sp1 2020r2-sp1.x
aveva / system_platform - 2020
aveva / historian 2020-r2_p01 2020-r2_p01.x
aveva / historian 2020-r2 2020-r2.x
aveva / historian 2020 2020.x
aveva / historian - 2020
aveva / intouch 2020-r2_p01 2020-r2_p01.x
aveva / intouch 2020-r2 2020-r2.x
aveva / intouch - 2020
aveva / intouch 2020 2020.x
aveva / enterprise_licensing - 3.7.002.x
aveva / recipe_management - 2020
aveva / recipe_management 2020 2020.x
aveva / recipe_management 2020-update_1_patch_2 2020-update_1_patch_2.x
aveva / manufacturing_execution_system - 2020
aveva / manufacturing_execution_system 2020-p01 2020-p01.x
aveva / batch_management 2020-sp1 2020-sp1.x
aveva / batch_management - 2020
aveva / batch_management 2020 2020.x
aveva / communication_drivers - 2020
aveva / communication_drivers 2020 2020.x
aveva / communication_drivers 2020-r2 2020-r2.x
aveva / communication_drivers 2020-r2_p01 2020-r2_p01.x
aveva / mobile_operator - 2020
aveva / mobile_operator 2020-r1 2020-r1.x
aveva / plant_scada - 2020
aveva / plant_scada 2020 2020.x
aveva / plant_scada 2020-r2 2020-r2.x
aveva / work_tasks - 2020
aveva / work_tasks 2020-update_2 2020-update_2.x
aveva / edge - 20.1.101.x