CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-14017

An Uncontrolled Search Path Element issue was discovered in Progea Movicon Version 11.5.1181 and prior. An uncontrolled search path element vulnerability has been identified, which may allow a remote attacker without privileges to execute arbitrary code in the form of a malicious DLL file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

http://www.securityfocus.com/bid/101483
https://ics-cert.us-cert.gov/advisories/ICSA-17-290-01
http://www.securityfocus.com/bid/101483
https://ics-cert.us-cert.gov/advisories/ICSA-17-290-01

Products affected by CVE-2017-14017

Progea » Movicon » Version: 11.4

cpe:2.3:a:progea:movicon:11.4
Progea » Movicon » Version: 11.4.1150

cpe:2.3:a:progea:movicon:11.4.1150
Progea » Movicon » Version: 11.5.1181

cpe:2.3:a:progea:movicon:11.5.1181

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14017

Products

Pricing

Contact Us