SQL Injection in Aveva Historian Web Server

CVE-2024-6456

AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially engineered by a miscreant into opening a sp…

Vulnerability class: SQL Injection

EPSS: 0.004 (33.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References