{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-15T00:38:15.834","vulnerabilities":[{"cve":{"id":"CVE-2023-6132","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2024-02-29T18:15:16.283","lastModified":"2025-03-04T12:38:47.847","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"\nThe vulnerability, if exploited, could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege escalation by tricking AVEVA Edge to load an unsafe DLL.\n\n"},{"lang":"es","value":"La vulnerabilidad, si se explota, podría permitir que una entidad maliciosa con acceso al sistema de archivos logre la ejecución de código arbitrario y una escalada de privilegios engañando a AVEVA Edge para que cargue una DLL insegura."}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.3,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-427"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:aveva:platform_common_services:4.4.6:*:*:*:*:*:*:*","matchCriteriaId":"9D5AA794-B71B-4DC2-8254-558DA9EAA18C"},{"vulnerable":true,"criteria":"cpe:2.3:a:aveva:platform_common_services:4.5.0:*:*:*:*:*:*:*","matchCriteriaId":"EA195955-5FCD-45B6-8A92-237841971054"},{"vulnerable":true,"criteria":"cpe:2.3:a:aveva:platform_common_services:4.5.1:*:*:*:*:*:*:*","matchCriteriaId":"BB04BBFF-711B-4131-9351-2D6368D51551"},{"vulnerable":true,"criteria":"cpe:2.3:a:aveva:platform_common_services:4.5.2:*:*:*:*:*:*:*","matchCriteriaId":"BE7D391D-D697-4517-BA2D-207CF0E59D1D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:batch_management:2020:*:*:*:*:*:*:*","matchCriteriaId":"EC211CF9-48DB-499F-8C47-8FA9FBC793F6"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:enterprise_data_management:2021:*:*:*:*:*:*:*","matchCriteriaId":"F9E14A30-8B46-4C8F-8D3D-9B1825FCD1F8"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:manufacturing_execution_system:2020:*:*:*:*:*:*:*","matchCriteriaId":"1288B3F5-2A5F-4516-96F8-FDB33A71060A"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:mobile_operator:2020:-:*:*:*:*:*:*","matchCriteriaId":"B9AA5D22-126E-4E0B-AD44-8990B9218AA6"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:system_platform:2020:-:*:*:*:*:*:*","matchCriteriaId":"D47F4B07-B67F-4855-AED2-D17B0E76FA8A"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:system_platform:2020:r2:*:*:*:*:*:*","matchCriteriaId":"1ED7E9C7-B882-4F57-B796-59A4F90EE185"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:system_platform:2020:r2_p01:*:*:*:*:*:*","matchCriteriaId":"33D5FF9C-590D-4BA3-A265-35956E4F36DF"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:work_tasks:2020:-:*:*:*:*:*:*","matchCriteriaId":"78E65146-9CB1-423B-A565-48530C453382"},{"vulnerable":false,"criteria":"cpe:2.3:a:aveva:work_tasks:2020:update_1:*:*:*:*:*:*","matchCriteriaId":"64EF2703-3C49-468A-ADA9-E78173DF4F65"}]}]}],"references":[{"url":"https://www.aveva.com/en/support-and-success/cyber-security-updates/","source":"ics-cert@hq.dhs.gov","tags":["Vendor Advisory"]},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-24-032-03","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.aveva.com/en/support-and-success/cyber-security-updates/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-24-032-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}}]}