Vulnerability Details CVE-2016-5787
General Electric (GE) Digital Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 27 mishandles service DACLs, which allows local users to modify a service configuration via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.2%
CVSS Severity
CVSS v3 Score 6.3
CVSS v2 Score 4.6
References
- http://www.securityfocus.com/bid/91727
- https://ge-ip.force.com/communities/en_US/Article/GE-Digital-Security-Advisory-GED-16-01
- https://ics-cert.us-cert.gov/advisories/ICSA-16-194-02
- http://www.securityfocus.com/bid/91727
- https://ge-ip.force.com/communities/en_US/Article/GE-Digital-Security-Advisory-GED-16-01
- https://ics-cert.us-cert.gov/advisories/ICSA-16-194-02
Products affected by CVE-2016-5787
-
cpe:2.3:a:ge:cimplicity:-
-
cpe:2.3:a:ge:cimplicity:6.1
-
cpe:2.3:a:ge:cimplicity:7.0
-
cpe:2.3:a:ge:cimplicity:7.5
-
cpe:2.3:a:ge:cimplicity:8.0
-
cpe:2.3:a:ge:cimplicity:8.1
-
cpe:2.3:a:ge:cimplicity:8.2