PT-2017-13189 · Ininet · Ininet Webserver

Published

2017-10-04

Updated

2019-10-09

CVE-2017-13995

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions iniNet Webserver versions prior to V2.02.0100

Description An issue with improper authentication was found, which may allow malicious attackers to access sensitive information, such as HMI pages, or modify PLC variables due to the webserver's failure to properly authenticate users.

Recommendations For versions prior to V2.02.0100, update to version V2.02.0100 or later to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2017-13995

Affected Products

Ininet Webserver

PT-2017-13189 · Ininet · Ininet Webserver

CVE-2017-13995

Weakness Enumeration

Related Identifiers

Affected Products

References · 4