Inductiveautomation Ignition Gateway — known CVE vulnerabilities
Every CVE whose affected-product data names Inductiveautomation Ignition Gateway, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-10641 — CVSS 7.5 (high): An unprotected logging route may allow an attacker to write endless log statements into the database without space limits or…
CVE-2020-10644 — CVSS 7.5 (high): The affected product lacks proper validation of user-supplied data, which can result in deserialization of untrusted data on the Ignition 8…
CVE-2020-12000 — CVSS 7.5 (high): The affected product is vulnerable to the handling of serialized data. The issue results from the lack of proper validation of…
CVE-2020-12004 — CVSS 7.5 (high): The affected product lacks proper authentication required to query the server on the Ignition 8 Gateway (versions prior to 8.0.10) and…
CVE-2020-14520 — CVSS 7.5 (high): The affected product is vulnerable to an information leak, which may allow an attacker to obtain sensitive information on the Ignition 8…