AVEVA InduSoft Web Studio and InTouch Edge HMI Critical Vulnerabilities Threat Alert
Overview Recently, AVEVA released a security bulletin to announce the remediation of two critical vulnerabilities in industrial software. CVE-2018-17916 is a stack overflow vulnerability that can be triggered by sending a crafted packet, leading to remote code execution by an unauthorized user. CVE-2018-17914 stems from an empty password in the configuration file. An unauthorized attacker […]