Vulnerability Details CVE-2017-9962
Schneider Electric's ClearSCADA versions released prior to August 2017 are susceptible to a memory allocation vulnerability, whereby malformed requests can be sent to ClearSCADA client applications to cause unexpected behavior. Client applications affected include ViewX and the Server Icon.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2017-9962
-
cpe:2.3:a:aveva:clearscada:2005
-
cpe:2.3:a:aveva:clearscada:2007
-
cpe:2.3:a:aveva:clearscada:2009
-
cpe:2.3:a:aveva:clearscada:2010