CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-14019

An Unquoted Search Path or Element issue was discovered in Progea Movicon Version 11.5.1181 and prior. An unquoted search path or element vulnerability has been identified, which may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate his or her privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.6%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

http://www.securityfocus.com/bid/101483
https://ics-cert.us-cert.gov/advisories/ICSA-17-290-01
http://www.securityfocus.com/bid/101483
https://ics-cert.us-cert.gov/advisories/ICSA-17-290-01

Products affected by CVE-2017-14019

Progea » Movicon » Version: 11.5.1181

cpe:2.3:a:progea:movicon:11.5.1181

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14019

Products

Pricing

Contact Us