Aveva Edna Enterprise Data Historian — known CVE vulnerabilities
Every CVE whose affected-product data names Aveva Edna Enterprise Data Historian, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-13499 — CVSS 9.8 (critical): An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053…
CVE-2020-13500 — CVSS 9.8 (critical): SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053…
CVE-2020-13501 — CVSS 9.8 (critical): An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053…
CVE-2020-13504 — CVSS 9.8 (critical): Parameter AttFilterValue in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests…
CVE-2020-13505 — CVSS 9.8 (critical): Parameter psClass in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can…