AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. Code is executed under the program runtime privileges, which could lead to the compromise of the machine.

The AVEVA InduSoft Web Studio (IWS) or InTouch Edge HMI (formerly InTouch Machine Edition) running on the remote host is affected by a remote code execution vulnerability due to multiple flaws in the TCPIP server listening on the default ports 1234 and 51234. Specifically, the server does not require authentication for command 66 received from a remote client and it can be instructed to read a database connection configuration file from an external host. An unauthenticated, remote attacker can exploit this issue, via a specially crafted message, to execute arbitrary code under the privileges of the IWS or InTouch Edge HMI runtime.

Detections

Analytics

CVE-2019-6543

critical

Tenable Plugins

critical