Security Warnings

Classification
These posts contain security warnings, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

AVEVA Update

142

Warning Date: 13 September, 2020

Severity Level ● Critical

Warning Number: 2020-1763

Target Sector: Communication and information technology - Manufacturing

Description:

AVEVA has released a security update to address a vulnerability in the following product:

  • Enterprise Data Management Web
    • v2019 and prior

Threats:

Attacker could exploit the vulnerability by conducting SQL injection.

Best practice and Recommendations:

The CERT team encourages users to review AVEVA security advisory and apply the necessary update:

Last updated at 13 September, 2020