VYPR

Plant Connectivity

by SAP

CVEs (3)

  • CVE-2017-16690HigDec 12, 2017
    risk 0.51cvss 7.8epss 0.01

    A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs like DWMAPI.dll (located in your Syswow64 / System32 folder) from the folder…

  • CVE-2023-2827Jun 13, 2023
    risk 0.00cvss epss 0.00

    SAP Plant Connectivity - version 15.5 (PCo) or the Production Connector for SAP Digital Manufacturing - version 1.0, do not validate the signature of the JSON Web Token (JWT) in the HTTP request sent from SAP Digital Manufacturing. Therefore, unauthorized callers from the…

  • CVE-2015-8330Nov 24, 2015
    risk 0.00cvss epss 0.03

    The PCo agent in SAP Plant Connectivity (PCo) allows remote attackers to cause a denial of service (memory corruption and agent crash) via crafted xMII requests, aka SAP Security Note 2238619.