Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

invensys

About This Vendor

invensys is a technology vendor producing software and infrastructure products. As a software provider, invensys's broad product portfolio across multiple domains—including operating systems, cloud infrastructure, enterprise applications, databases, networking, and security tools—creates a large attack surface. Additionally, long support cycles, widespread deployment, and continuous feature development contribute to the accumulation of discovered vulnerabilities over time. Major vendors typically report higher CVE counts not necessarily due to inferior security, but because of greater exposure to security research, responsible disclosure practices, and the sheer complexity of maintaining multiple product lines and legacy systems. Regular security assessments and patching of invensys's products are critical for organizations running their software in production environments.

Vulnerability Trends for This Vendor

SecUtils has indexed 27 known vulnerabilities from invensys. This includes 14 high-severity issues requiring prompt remediation. These vulnerabilities affect 24 distinct products across invensys's portfolio, demonstrating the breadth of the vendor's product ecosystem and the importance of comprehensive patch management strategies. Disclosure dates span from 2010 through 2014, with recent active disclosure activity. Organizations deploying invensys products should maintain active vulnerability monitoring, prioritize critical patches, and implement compensating controls where patches cannot be applied immediately.

ID Date Published Last Modified Severity (CVSSv3) Severity (CVSSv2) Exploit Available
CVE-2010-2974 2010-08-05 2026-06-16 - 9.3 Likely
CVE-2010-4557 2010-12-17 2026-06-16 - 10.0 Likely
CVE-2011-2962 2011-07-29 2026-06-16 - 9.3 Likely
CVE-2011-3141 2011-08-16 2026-06-16 - 9.3 Likely
CVE-2011-4870 2012-01-08 2026-06-16 - 6.8 Likely
CVE-2011-4038 2012-02-10 2026-06-16 - 4.3 Likely
CVE-2011-4039 2012-02-10 2026-06-16 - 9.3 Likely
CVE-2012-0225 2012-04-02 2026-06-16 - 4.3 Likely
CVE-2012-0226 2012-04-02 2026-06-16 - 7.5 Likely
CVE-2012-0228 2012-04-02 2026-06-16 - 7.5 Likely
CVE-2012-0257 2012-04-02 2026-06-16 - 6.8 Likely
CVE-2012-0258 2012-04-02 2026-06-16 - 6.8 Likely
CVE-2012-3007 2012-07-05 2026-06-16 - 5.0 Likely
CVE-2012-3847 2012-07-05 2026-06-16 - 5.0 Likely
CVE-2012-3005 2012-07-26 2026-06-16 - 6.9 Unknown
CVE-2012-4693 2012-12-18 2026-06-16 - 1.9 Unknown
CVE-2012-4710 2013-04-04 2026-06-16 - 9.3 Likely
CVE-2013-0684 2013-05-09 2026-06-16 - 7.5 Likely
CVE-2013-0685 2013-05-09 2026-06-16 - 9.3 Likely
CVE-2013-0686 2013-05-09 2026-06-16 - 9.3 Likely
CVE-2013-0688 2013-05-09 2026-06-16 - 4.3 Likely
CVE-2012-4709 2013-10-13 2026-06-16 - 6.9 Unknown
CVE-2014-2380 2014-08-28 2026-06-17 - 7.8 Likely
CVE-2014-2381 2014-08-28 2026-06-17 - 2.1 Unknown
CVE-2014-5397 2014-08-28 2026-06-17 - 7.5 Likely
CVE-2014-5398 2014-08-28 2026-06-17 - 2.1 Unknown
CVE-2014-5399 2014-08-28 2026-06-17 - 7.5 Likely

How SecUtils Normalizes Vendor Data

SecUtils aggregates National Vulnerability Database (NVD) and MITRE records for invensys by normalizing vendor identifiers across diverse data sources, mapping vendor names to their associated product lines, and collecting all known vulnerabilities under a unified vendor context. For every CVE associated with invensys's products, we extract and structure Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) categories, CVSS severity metrics, and reference links to enable rapid vulnerability identification and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and vendor vulnerability tracking.