PT-2018-8547 · Schneider Electric · Igss Scada

Publicado

2018-02-12

Atualizado

2019-10-03

CVE-2017-9967

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Schneider Electric's IGSS SCADA Software versions prior to 13

Description A security misconfiguration issue exists due to improper configuration of security settings such as Address Space Layout Randomization (ASLR) and Data Execution Prevention (DEP), resulting in weak security.

Recommendations For versions prior to 13, properly configure security settings including Address Space Layout Randomization (ASLR) and Data Execution Prevention (DEP) to strengthen security.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2017-9967

Produtos afetados

Igss Scada

PT-2018-8547 · Schneider Electric · Igss Scada

CVE-2017-9967

Identificadores relacionados

Produtos afetados

Referências · 4