Andrey Zhukov

**Name of the Vulnerable Software and Affected Versions** Rockwell Automation FactoryTalk Services Platform versions 2.90 and earlier **Description** A remote unauthenticated attacker could send numerous crafted packets to service ports, resulting in memory consumption that could lead to a partial or complete denial-of-service condition to the affected services. **Recommendations** For versions 2.90 and earlier, update to a version later than 2.90 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Schneider Electric Wonderware ArchestrA Logger versions 2017.426.2307.1 and prior Description: A Null Pointer Dereference issue was discovered, which could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing. The vulnerability is related to the aaLogger network service, used for message exchange between ArchestrA components. Exploitation of the vulnerability may allow a remote attacker to cause a denial of service using a specially crafted request. Recommendations: For versions 2017.426.2307.1 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Schneider Electric Wonderware ArchestrA Logger versions 2017.426.2307.1 and prior Description: An Uncontrolled Resource Consumption issue was discovered, which could allow an attacker to exhaust the memory resources of the machine, causing a denial of service. The vulnerability is related to the aaLogger network service, used for message exchange between ArchestrA components. Exploitation of the vulnerability may allow a remote attacker to cause a denial of service using a specially crafted request. Recommendations: For versions 2017.426.2307.1 and prior, update to a version later than 2017.426.2307.1 to resolve the issue. At the moment, there is no information about additional mitigation measures for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Schneider Electric Wonderware Historian Client versions 2014 R2 SP1 and prior **Description** An issue with the XML parser configuration was found, which may allow an attacker to cause a denial of service or disclose file contents from a server or connected network by entering malicious input through the application. This is due to an improperly restricted XML parser that allows XML external entity reference (XXE). **Recommendations** For Schneider Electric Wonderware Historian Client versions 2014 R2 SP1 and prior, consider restricting or properly configuring the XML parser to prevent XXE attacks as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.