Wonderware Intouch
Approved changes feed: RSS · Atom
cpe:2.3:a:invensys:wonderware_intouch:*:r2:*:*:*:*:*:*
part: a version: * update: r2
| Vendor | Invensys (71736450-6408-5b87-8efb-79f5d5ed779e) |
|---|---|
| Product | Wonderware Intouch (75e826e2-f1be-5255-b2ea-aeedbf263543) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2012-4709 |
vulnerable | 2026-06-03 14:32:25.314298 |
Details available
Invensys Wonderware InTouch HMI 2012 R2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Published: 2013-10-13T10:00:00.000Z
Updated: 2024-09-16T19:31:54.693Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-4693 |
vulnerable | 2026-06-03 14:32:25.268344 |
Details available
Invensys Wonderware InTouch 2012 R2 and earlier and Siemens ProcessSuite use a weak encryption algorithm for data in Ps_security.ini, which makes it easier for local users to discover passwords by reading this file.
Published: 2012-12-18T11:00:00.000Z
Updated: 2024-09-16T20:57:49.398Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.