Vulnerabilities in Aveva
50 resultsCVE-2024-6456HIGHSQL Injection vulnerability in AVEVA Historian ServerEPSS 0.4%CVE-2024-3468HIGHDeserialization of Untrusted Data in AVEVA PI Web APIEPSS 0.4%CVE-2026-5387CRITICALAVEVA Pipeline Simulation Missing AuthorizationEPSS 0.4%CVE-2019-10981—In Vijeo Citect 7.30 and 7.40, and CitectSCADA 7.30 and 7.40, a vulnerability has been identified that may allow an authenticated local userEPSS 0.4%CVE-2025-44019HIGHAVEVA PI Data Archive Uncaught ExceptionEPSS 0.4%CVE-2025-36539HIGHAVEVA PI Data Archive Uncaught ExceptionEPSS 0.3%CVE-2025-41415HIGHAVEVA PI Integrator Insertion of Sensitive Information into Sent DataEPSS 0.3%CVE-2025-61943CRITICALAVEVA Process Optimization SQL InjectionEPSS 0.3%CVE-2024-6618HIGHPath Traversal in Ocean Data Systems Dream ReportEPSS 0.3%CVE-2025-64691CRITICALAVEVA Process Optimization Code InjectionEPSS 0.3%CVE-2026-1507HIGHUncaught Exception vulnerability in AVEVA PI Data ArchiveEPSS 0.3%CVE-2025-54460HIGHAVEVA PI Integrator Unrestricted Upload of File with Dangerous TypeEPSS 0.3%CVE-2025-65118CRITICALAVEVA Process Optimization Uncontrolled Search Path ElementEPSS 0.3%CVE-2023-33873HIGHAVEVA Operations Control Logger Execution with Unnecessary Privileges EPSS 0.2%CVE-2023-34982MEDIUMAVEVA Operations Control Logger External Control of File Name or Path EPSS 0.2%CVE-2021-38410HIGHAVEVA PCS Portal Uncontrolled Search Path ElementEPSS 0.2%CVE-2025-2745MEDIUMAVEVA PI Web API Cross-site ScriptingEPSS 0.2%CVE-2025-65117HIGHAVEVA Process Optimization Use of Potentially Dangerous FunctionEPSS 0.2%CVE-2023-6132HIGHAVEVA Edge products Uncontrolled Search Path ElementEPSS 0.2%CVE-2024-3467HIGHDeserialization of Untrusted Data in AVEVA PI Asset Framework ClientEPSS 0.2%