Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Inductive Automation — Vulnerabilities & Security Advisories 28

Browse all 28 CVE security advisories affecting Inductive Automation. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Inductive Automation specializes in industrial internet of things (IIoT) software, primarily providing the Ignition platform for manufacturing execution systems and data acquisition. The company’s software stack has been associated with twenty-eight recorded Common Vulnerabilities and Exposures (CVEs), reflecting the complexity of its extensive module ecosystem. Historically, these security flaws have predominantly involved remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation or insecure default configurations within third-party components integrated into the platform. While no widespread, catastrophic breaches directly attributed to Inductive Automation have been publicly documented, the high volume of CVEs underscores significant risks in legacy versions. Organizations utilizing Ignition must prioritize rigorous patch management and network segmentation to mitigate exposure to these known exploit vectors, ensuring that critical industrial control systems remain resilient against potential unauthorized access or system compromise.

Top products by Inductive Automation: Ignition Ignition 7 Gateway Ignition Software
CVE IDTitleCVSSSeverityPublished
CVE-2025-13913 Inductive Automation Ignition Software Deserialization of Untrusted Data — Ignition SoftwareCWE-502 6.3 Medium2026-03-12
CVE-2025-13911 Inductive Automation Ignition Execution with Unnecessary Privileges — IgnitionCWE-250 6.4 Medium2025-12-18
CVE-2023-50233 Inductive Automation Ignition getJavaExecutable Directory Traversal Remote Code Execution Vulnerability — IgnitionCWE-22 8.8 -2024-05-03
CVE-2023-50232 Inductive Automation Ignition getParams Argument Injection Remote Code Execution Vulnerability — IgnitionCWE-88 8.8 -2024-05-03
CVE-2023-50223 Inductive Automation Ignition ExtendedDocumentCodec Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 8.8 -2024-05-03
CVE-2023-50222 Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 8.8 -2024-05-03
CVE-2023-50221 Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 8.8 -2024-05-03
CVE-2023-50220 Inductive Automation Ignition Base64Element Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 8.8 -2024-05-03
CVE-2023-50219 Inductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 8.8 -2024-05-03
CVE-2023-50218 Inductive Automation Ignition ModuleInvoke Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 8.8 -2024-05-03
CVE-2023-39477 Inductive Automation Ignition ConditionRefresh Resource Exhaustion Denial-of-Service Vulnerability — IgnitionCWE-400 7.5 -2024-05-03
CVE-2023-39476 Inductive Automation Ignition JavaSerializationCodec Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 9.8 -2024-05-03
CVE-2023-39474 Inductive Automation Ignition downloadLaunchClientJar Remote Code Execution Vulnerability — IgnitionCWE-494 7.8 -2024-05-03
CVE-2023-39475 Inductive Automation Ignition ParameterVersionJavaSerializationCodec Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 9.8 -2024-05-03
CVE-2023-39473 Inductive Automation Ignition AbstractGatewayFunction Deserialization of Untrusted Data Remote Code Execution Vulnerability — IgnitionCWE-502 8.8 -2024-05-03
CVE-2023-39472 Inductive Automation Ignition SimpleXMLReader XML External Entity Processing Information Disclosure Vulnerability — IgnitionCWE-611 6.5 -2024-05-03
CVE-2023-38123 Inductive Automation Ignition OPC UA Quick Client Missing Authentication for Critical Function Authentication Bypass Vulnerability — IgnitionCWE-306 8.8 -2024-05-03
CVE-2023-38124 Inductive Automation Ignition OPC UA Quick Client Task Scheduling Exposed Dangerous Function Remote Code Execution Vulnerability — IgnitionCWE-749 8.8 -2024-05-03
CVE-2023-38122 Inductive Automation Ignition OPC UA Quick Client Permissive Cross-domain Policy Remote Code Execution Vulnerability — IgnitionCWE-942 8.8 -2024-05-03
CVE-2023-38121 Inductive Automation Ignition OPC UA Quick Client Cross-Site Scripting Remote Code Execution Vulnerability — IgnitionCWE-79 9.6 -2024-05-03
CVE-2022-1704 Inductive Automation Ignition — IgnitionCWE-611 7.6 High2022-08-05
CVE-2022-35873 Inductive Automation Ignition 代码注入漏洞 — IgnitionCWE-356 7.8 -2022-07-25
CVE-2022-35872 Inductive Automation Ignition 代码问题漏洞 — IgnitionCWE-502 7.8 -2022-07-25
CVE-2022-35871 Inductive Automation Ignition 访问控制错误漏洞 — IgnitionCWE-306 8.4 -2022-07-25
CVE-2022-35870 Inductive Automation Ignition 代码问题漏洞 — IgnitionCWE-502 8.4 -2022-07-25
CVE-2022-35869 Inductive Automation Ignition授权问题漏洞 — IgnitionCWE-288 9.8 -2022-07-25
CVE-2022-1264 Inductive Automation Ignition — IgnitionCWE-22 6.8 Medium2022-07-20
CVE-2020-14479 ICSA-20-147-01 Inductive Automation Ignition (Update B) — Ignition 7 GatewayCWE-306 5.3 Medium2022-04-01

This page lists every published CVE security advisory associated with Inductive Automation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.