Muffin

**Name of the Vulnerable Software and Affected Versions** AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000) **Description** This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within the parsing of APP files due to the lack of proper validation of user-supplied data, resulting in deserialization of untrusted data. An attacker can leverage this to execute code in the context of the current process. **Recommendations** For AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000), as a temporary workaround, consider disabling the parsing of APP files until a patch is available. Restrict access to untrusted data to minimize the risk of exploitation. Avoid using user-supplied data in the affected parsing process until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Inductive Automation Ignition versions 7.9.20 and earlier Inductive Automation Ignition versions 8.1.17 and earlier **Description** An issue was discovered in Inductive Automation Ignition that allows remote attackers to execute arbitrary code by supplying a Python script using the `ScriptInvoke` function. **Recommendations** For Inductive Automation Ignition versions 7.9.20 and earlier, update to version 7.9.20 or later. For Inductive Automation Ignition versions 8.1.17 and earlier, update to version 8.1.17 or later. As a temporary workaround, consider disabling the `ScriptInvoke` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Triangle MicroWorks SCADA Data Gateway (affected versions not specified) **Description** This issue allows remote attackers to execute arbitrary code on affected installations. Although authentication is required to exploit this issue, the existing authentication mechanism can be bypassed. The specific flaw exists within the Restore Workspace feature, resulting from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this issue to execute code in the context of SYSTEM. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** FactoryTalk Linx versions 6.00 through 6.11 RSLinx Classic versions 4.11.00 and prior Connected Components Workbench versions 12 and prior ControlFLASH versions 14 and later ControlFLASH Plus versions 1 and later FactoryTalk Asset Centre versions 9 and later FactoryTalk Linx CommDTM versions 1 and later Studio 5000 Launcher versions 31 and later Studio 5000 Logix Designer software versions 32 and prior **Description** The parsing mechanism that processes certain file types does not provide input sanitation, which may allow an attacker to use specially crafted files to traverse the file system, modify or expose sensitive data, or execute arbitrary code. **Recommendations** For FactoryTalk Linx versions 6.00 through 6.11, consider disabling the file parsing mechanism until a patch is available. For RSLinx Classic versions 4.11.00 and prior, restrict access to the file system to minimize the risk of exploitation. For Connected Components Workbench versions 12 and prior, avoid using the vulnerable file types in the affected software until the issue is resolved. For ControlFLASH versions 14 and later, ControlFLASH Plus versions 1 and later, FactoryTalk Asset Centre versions 9 and later, FactoryTalk Linx CommDTM versions 1 and later, Studio 5000 Launcher versions 31 and later, and Studio 5000 Logix Designer software versions 32 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** OPC Foundation UA .NET Standard version 1.04.358.30 **Description** This issue allows remote attackers to create a denial-of-service condition on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the handling of sessions, resulting from the lack of proper locking when performing operations on an object. An attacker can leverage this issue to create a denial-of-service condition against the application. **Recommendations** For OPC Foundation UA .NET Standard version 1.04.358.30, consider applying a patch or fix that addresses the lack of proper locking when performing operations on an object, specifically within the handling of sessions, to prevent the creation of a denial-of-service condition. At the moment, there is no information about a newer version that contains a fix for this issue.