CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-3005

Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier, as used in Wonderware Application Server, Wonderware Information Server, Foxboro Control Software, InFusion CE/FE/SCADA, InBatch, and Wonderware Historian, allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.1%

CVSS Severity

CVSS v2 Score 6.9

References

Products affected by CVE-2012-3005

Invensys » Foxboro Control Software » Version: 3.1

cpe:2.3:a:invensys:foxboro_control_software:3.1
Invensys » Foxboro Control Software » Version: 4.0

cpe:2.3:a:invensys:foxboro_control_software:4.0
Invensys » Infusion Ce/fe/scada » Version: 2.5

cpe:2.3:a:invensys:infusion_ce/fe/scada:2.5
Invensys » Intouch/wonderware Application Server » Version: 10.0

cpe:2.3:a:invensys:intouch/wonderware_application_server:10.0
Invensys » Intouch/wonderware Application Server » Version: 10.5

cpe:2.3:a:invensys:intouch/wonderware_application_server:10.5
Invensys » Intouch/wonderware Application Server » Version: 2012

cpe:2.3:a:invensys:intouch/wonderware_application_server:2012
Invensys » Intouch » Version: 2012

cpe:2.3:a:invensys:intouch:2012
Invensys » Wonderware Historian » Version: 10.0

cpe:2.3:a:invensys:wonderware_historian:10.0
Invensys » Wonderware Inbatch » Version: 8.1

cpe:2.3:a:invensys:wonderware_inbatch:8.1
Invensys » Wonderware Inbatch » Version: 9.0

cpe:2.3:a:invensys:wonderware_inbatch:9.0
Invensys » Wonderware Inbatch » Version: 9.5

cpe:2.3:a:invensys:wonderware_inbatch:9.5
Invensys » Wonderware Information Server » Version: 3.1

cpe:2.3:a:invensys:wonderware_information_server:3.1
Invensys » Wonderware Information Server » Version: 4.0

cpe:2.3:a:invensys:wonderware_information_server:4.0
Invensys » Wonderware Information Server » Version: 4.5

cpe:2.3:a:invensys:wonderware_information_server:4.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-3005

Products

Pricing

Contact Us