GE Digital Proficy Historian contains multiple vulnerabilities, including Authentication Bypass using an Alternate Path or Channel, Unrestricted Upload of File with Dangerous Type, Improper Access Control, and Weak Encoding for Password. Successful exploitation of these vulnerabilities could crash the device after access, cause a buffer overflow condition, and allow remote code execution. Highest CVSSv3 score of 9.8
More info.