GCVE - cpe:2.3:a:aveva:intouch_access_anywhere:2020:-:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:aveva:intouch_access_anywhere:2020:-:*:*:*:*:*:*

part: a version: 2020 update: -

Vendor	Aveva (`419325dd-398d-5d8e-98c9-e41c800a541d`)
Product	Intouch Access Anywhere (`5a69cdcc-6224-5908-ad98-6a5f01805dde`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-23854`	vulnerable	2026-06-03 14:46:29.028042	Details available HIGH (7.5) AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server. Published: 2022-12-23T20:50:24.757Z Updated: 2025-02-13T16:32:24.155Z Open on db.gcve.eu Reference links https://www.cisa.gov/uscert/ics/advisories/icsa-22-342-02 https://www.aveva.com/content/dam/aveva/documents/support/cyber-security-updates/SecurityBulletin_AVEVA-2023-001_r.pdf https://crisec.de/advisory-aveva-intouch-access-anywhere-secure-gateway-path-traversal	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.