QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2017-6021

Back to search

CVE-2017-6021

Published: May 14, 2018

Modified: Sep 16, 2024

PUBLISHED

Description

In Schneider Electric ClearSCADA 2014 R1 (build 75.5210) and prior, 2014 R1.1 (build 75.5387) and prior, 2015 R1 (build 76.5648) and prior, and 2015 R2 (build 77.5882) and prior, an attacker with network access to the ClearSCADA server can send specially crafted sequences of commands and data packets to the ClearSCADA server that can cause the ClearSCADA server process and ClearSCADA communications driver processes to terminate. A CVSS v3 base score of 7.5 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

VendorProductVersions

Schneider Electric SE

ClearSCADA

affected
2014 R1 (build 75.5210) and prior
affected
2014 R1.1 (build 75.5387) and prior
affected
2015 R1 (build 76.5648) and prior
affected
2015 R2 (build 77.5882) and prior

Weaknesses (CWE)

CWE-20

References

96768
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now