VYPR

ThingWorx Platform

by Ptc

CVEs (4)

  • CVE-2018-17217HigOct 1, 2018
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is a hardcoded encryption key.

  • CVE-2018-17216MedOct 1, 2018
    risk 0.42cvss 6.5epss 0.01

    An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is password hash exposure to privileged users.

  • CVE-2018-17218MedOct 1, 2018
    risk 0.35cvss 5.4epss 0.01

    An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is reflected XSS in the SQUEAL search function.

  • CVE-2018-20092Dec 17, 2018
    risk 0.00cvss epss 0.02

    PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request.