Primary

Context

AVEVA Process Optimization Cleartext Transmission Vulnerability

Vulnerability

A vulnerability exists in the AVEVA Process Optimization application suite due to the use of unencrypted connection channels and protocols. This flaw could lead to hijacking or data leakage under certain man-in-the-middle or passive inspection scenarios. The vulnerability affects all versions of AVEVA Process Optimization prior to 2024.1.

Impact

Exploitation of this vulnerability could result in interception and unauthorized access to sensitive information transmitted over the connection channels.

Remediation

Users are advised to update to AVEVA Process Optimization version 2024.1 or later. For guidance on updating, refer to the AVEVA Cyber Security Updates page.

Added: Jan 16, 2026, 2:26 AM

Updated: Jan 16, 2026, 2:26 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.5

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.5

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AVEVA Process Optimization Cleartext Transmission Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating