SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-467498101] Schneider Electric Wonderware Historian Client

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2017-05-02OtherSchneider ElectricAndrey Zhukov from USSC reported this vulnerability and has tested the patch. N/ACVE-2017-7907 N/AN/AN/A

Source

						
							
								
#
# Schneider Electric Wonderware Historian Client
#


### VULNERABLE VENDOR
Schneider Electric


### VULNERABLE PRODUCT
Wonderware Historian Client



### RESEARCHER
Andrey Zhukov from USSC reported this vulnerability and has tested the patch.



### AFFECTED PRODUCTS

The following versions of Wonderware Historian Client, an analysis and reporting software, are affected:

Wonderware Historian Client 2014 R2 SP1 and prior.



### IMPACT

Successful exploitation of this vulnerability could allow a malicious entity to cause denial of service of trend display or to disclose arbitrary files from the local file system to a malicious web site.



### VULNERABILITY OVERVIEW

IMPROPER RESTRICTION OF XML EXTERNAL ENTITY REFERENCE ('XXE') CWE-611
An improperly restricted XML parser may allow an attacker to enter malicious input through the application which could cause a denial of service or disclose file contents from a server or connected network.
CVE-2017-7907 has been assigned to this vulnerability.
A CVSS v3 base score of 6.6 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H)





### BACKGROUND

Critical Infrastructure Sector(s): Critical Manufacturing, Energy, Healthcare and Public Health, Water and Wastewater Systems
Countries/Areas Deployed: Worldwide
Company Headquarters Location: Paris, France




### MITIGATION

Schneider Electric recommends that users of Wonderware Historian Client 2014 R2 SP1 apply update HC_SecurityHF_10.6.13100. Users of older versions of Wonderware Historian Client are also affected and should first upgrade to Wonderware Historian Client 2014 R2 SP1 and then apply HC_SecurityHF_10.6.13100.

Users of Wonderware Historian Client can login at the following support web site to download the upgrade:

https://gcsresource.invensys.com/tracking/ConfirmDownload.aspx?id=22409


Schneider Electric has issued Security Bulletin LFSEC00000120, which contains additional information:

http://software.schneider-electric.com/support/cyber-security-updates/