← Back to home
ICSA-24-226-08  ·  Published 2024-08-13  ·  View on CISA ICS-CERT ↗

Ocean Data Systems Dream Report

CVSS 7.8 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to perform remote code execution or escalate their privileges and cause a denial-of-service condition.

CVEs (2)

Remediations

  • Ocean Data Systems recommends users to update to the following:
  • Dream Report 2023 R2: Version 23.3.18952.0523
  • For more information, see Dream Report Version 2023 R2 Released.
  • AVEVA recommends users of affected versions upgrade to the versions listed below and apply the corresponding security update:
  • Update to AVEVA Reports for Operations 2023 R2 or later
  • For more information, see security bulletin AVEVA-2024-006.

Affected Vendors

Ocean Data Systems

Affected Products (2)

Ocean Data Systems · Dream Report 2023 <=23.0.17795.1010
Ocean Data Systems · AVEVA Reports for Operations 2023 23.0.17795.1010

Affected Sectors

Critical Manufacturing, Chemical, Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more