Aveva

Edna Enterprise Data Historian

5 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2020-13499

Exploit
  • EPSS 0.28%
  • Published 24.09.2020 15:15:13
  • Last modified 21.11.2024 05:01:23

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstancePa...

9.8

CVE-2020-13500

Exploit
  • EPSS 0.28%
  • Published 24.09.2020 15:15:13
  • Last modified 21.11.2024 05:01:23

SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter ClassName in ...

9.8

CVE-2020-13501

Exploit
  • EPSS 0.28%
  • Published 24.09.2020 15:15:13
  • Last modified 21.11.2024 05:01:23

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstanceNa...

9.8

CVE-2020-13504

Exploit
  • EPSS 0.45%
  • Published 24.09.2020 15:15:13
  • Last modified 21.11.2024 05:01:23

Parameter AttFilterValue in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An attacker can send unauthenticated HTTP requests to tr...

9.8

CVE-2020-13505

Exploit
  • EPSS 0.45%
  • Published 24.09.2020 15:15:13
  • Last modified 21.11.2024 05:01:23

Parameter psClass in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An attacker can send unauthenticated HTTP requests to trigger t...