PT-2017-16846 · Atvise · Atvise Scada

Published

2017-05-06

Updated

2019-10-09

CVE-2017-6031

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions atvise scada versions prior to 3.0

Description A Header Injection issue has been identified in the software, which is caused by an improper neutralization of HTTP headers for scripting syntax. This issue may allow remote code execution.

Recommendations For versions prior to 3.0, update to version 3.0 or later to resolve the issue.

Fix

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-644

Related Identifiers

CVE-2017-6031

Affected Products

Atvise Scada

PT-2017-16846 · Atvise · Atvise Scada

CVE-2017-6031

Weakness Enumeration

Related Identifiers

Affected Products

References · 4