Browse all 6 CVE security advisories affecting PTC . AI-powered Chinese analysis, POCs, and references for each vulnerability.
PTC operates as a provider of industrial internet of things (IIoT) software, primarily known for its ThingWorx platform which enables asset tracking, predictive maintenance, and operational efficiency for manufacturing enterprises. The company’s software portfolio has been associated with twenty-one recorded Common Vulnerabilities and Exposures (CVEs), reflecting significant security scrutiny. Historically, these flaws predominantly involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation vulnerabilities, often stemming from insufficient input validation or improper access controls within its web interfaces and APIs. Notable incidents include critical RCE flaws in ThingWorx that allowed unauthenticated attackers to execute arbitrary commands on affected servers, highlighting risks in default configurations. These vulnerabilities underscore the importance of rigorous patch management and secure deployment practices for organizations relying on PTC’s industrial connectivity solutions to mitigate potential operational disruptions and data breaches.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-31200 | PTC Vuforia Studio Cross-Site Request Forgery — Vuforia StudioCWE-352 | 5.7 | Medium | 2023-06-07 |
| CVE-2023-29502 | PTC Vuforia Studio Path Traversal — Vuforia StudioCWE-22 | 6.2 | Medium | 2023-06-07 |
| CVE-2023-27881 | PTC Vuforia Studio Unrestricted Upload of File with Dangerous Type — Vuforia StudioCWE-434 | 8.0 | High | 2023-06-07 |
| CVE-2023-29152 | PTC Vuforia Studio Improper Authorization — Vuforia StudioCWE-285 | 6.2 | Medium | 2023-06-07 |
| CVE-2023-24476 | PTC Vuforia Studio Improper Authorization — Vuforia StudioCWE-285 | 1.8 | Low | 2023-06-07 |
| CVE-2023-29168 | PTC Vuforia Studio Insufficiently Protected Credentials — Vuforia StudioCWE-522 | 3.7 | Low | 2023-06-07 |
This page lists every published CVE security advisory associated with PTC . Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.