Openautomationsoftware Oas Platform — known CVE vulnerabilities
Every CVE whose affected-product data names Openautomationsoftware Oas Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2022-26833 — CVSS 9.4 (critical): An improper authentication vulnerability exists in the REST API functionality of Open Automation Software OAS Platform V16.00.0121. A…
CVE-2022-26082 — CVSS 9.1 (critical): A file write vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform V16.00.0112…
CVE-2023-34998 — CVSS 8.1 (high): An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A…
CVE-2023-31242 — CVSS 8.1 (high): An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A…
CVE-2022-27169 — CVSS 7.5 (high): An information disclosure vulnerability exists in the OAS Engine SecureBrowseFile functionality of Open Automation Software OAS Platform…
CVE-2022-26026 — CVSS 7.5 (high): A denial of service vulnerability exists in the OAS Engine SecureConfigValues functionality of Open Automation Software OAS Platform…
CVE-2022-26043 — CVSS 7.5 (high): An external config control vulnerability exists in the OAS Engine SecureAddSecurity functionality of Open Automation Software OAS Platform…
CVE-2022-26077 — CVSS 7.5 (high): A cleartext transmission of sensitive information vulnerability exists in the OAS Engine configuration communications functionality of Open…
CVE-2022-26303 — CVSS 7.5 (high): An external config control vulnerability exists in the OAS Engine SecureAddUser functionality of Open Automation Software OAS Platform…
CVE-2023-34353 — CVSS 7.5 (high): An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automation Software OAS Platform…
CVE-2023-32615 — CVSS 6.5 (medium): A file write vulnerability exists in the OAS Engine configuration functionality of Open Automation Software OAS Platform v18.00.0072. A…
CVE-2023-34317 — CVSS 6.5 (medium): An improper input validation vulnerability exists in the OAS Engine User Creation functionality of Open Automation Software OAS Platform…
CVE-2023-32271 — CVSS 6.5 (medium): An information disclosure vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS…
CVE-2022-26067 — CVSS 4.9 (medium): An information disclosure vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform…
CVE-2023-35124 — CVSS 3.1 (low): An information disclosure vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS…
CVE-2023-34994 — CVSS 3.1 (low): An improper resource allocation vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software…