SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-718785643] Certec EDV GmbH atvise scada

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2017-04-06OtherCertec EDV GmbHSebastian Neef of Internetwache.org discovered the vulnerabilities.N/ACVE-2017-6031 CVE-2017-6029 N/AN/AN/A

Source

						
							
								
#
# Certec EDV GmbH atvise scada
#


### VULNERABLE VENDOR
Certec EDV GmbH


### VULNERABLE PRODUCT
atvise scada



### RESEARCHER
Sebastian Neef


### AFFECTED PRODUCTS

The following versions of atvise scada, a HMI configuration platform, are affected:

Atvise scada 3.0 and prior.



### IMPACT

Successful exploitation of these vulnerabilities could cause the device that the attacker is accessing to execute arbitrary code, affecting the integrity of the device.



### VULNERABILITY OVERVIEW

IMPROPER NEUTRALIZATION OF HTTP HEADERS FOR SCRIPTING SYNTAX CWE-644
The header injection vulnerability has been identified, which may allow remote code execution.
CVE-2017-6031 has been assigned to this vulnerability.
A CVSS v3 base score of 6.1 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)


CROSS-SITE SCRIPTING CWE-79
The cross-site scripting vulnerability has been identified, which may allow remote code execution.
CVE-2017-6029 has been assigned to this vulnerability.
A CVSS v3 base score of 5.4 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)





### BACKGROUND

Critical Infrastructure Sector: Critical Manufacturing
Countries/Areas Deployed: Worldwide
Company Headquarters Location: Eisenstadt, Austria




### MITIGATION

Certec EDV GmbH advises affected users to update to the latest version, Version 3.1, which can be downloaded from the following link (a login will need to be obtained to download the latest version):

http://www.atvise.com/en/component/phocadownload/category/65-patches


Certec EDV GmbH also recommends that users activate built-in security mechanisms for the product as described in the atvise scada documentation.