Aveva Process Optimization — known CVE vulnerabilities
Every CVE whose affected-product data names Aveva Process Optimization, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2025-61937 — CVSS 10.0 (critical): The vulnerability, if exploited, could allow an unauthenticated miscreant to achieve remote code execution under OS system privileges of…
CVE-2025-65118 — CVSS 8.8 (high): The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to trick Process Optimization services into…
CVE-2025-64691 — CVSS 8.8 (high): The vulnerability, if exploited, could allow an authenticated miscreant (OS standard user) to tamper with TCL Macro scripts and escalate…
CVE-2025-61943 — CVSS 8.4 (high): The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Standard User) to tamper with queries in…
CVE-2025-64729 — CVSS 8.1 (high): The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamper with Process Optimization project…
CVE-2025-65117 — CVSS 7.4 (high): The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Designer User) to embed OLE objects into…
CVE-2025-64769 — CVSS 7.1 (high): The Process Optimization application suite leverages connection channels/protocols that by-default are not encrypted and could become…