On 10 May 2022 ICS-CERT published an ICS Advisory to highlight a vulnerability in the following products:
- AVEVA InTouch Access Anywhere – all versions
- AVEVA Plant SCADA Access Anywhere – all versions
Exploitation of this vulnerability could result in arbitrary command execution.
The Canadian Cyber Centre encourages users and administrators to review the provided web link and perform the suggested mitigations.