CVE-2018-17914

CVE-2018-17914

Vendor Unknown
Product InduSoft Web Studio, and InTouch Edge HMI (formerly InTouch Machine Edition)
Weakness CWE-258
Published November 2, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2. This vulnerability could allow an unauthenticated user to remotely execute code with the same privileges as that of the InduSoft Web Studio or InTouch Edge HMI (formerly InTouch Machine Edition) runtime.

Key dates

02Disclosure timeline

November 2, 2018 CVE published
August 5, 2024 Record updated