CyberSec.Space Logo
Back to CVE Browser

CVE-2017-7928

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1740%
EPSS Percentile10.90th
PublishedAug 7, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The device does not properly enforce access control while configured for NAT port forwarding, which may allow for unauthorized communications to downstream devices.

Affected Platforms (CPE)

πŸ’»
Selinc

Sel 3620 Firmware

= r202
πŸ’»
Selinc

Sel 3620 Firmware

= r203
πŸ’»
Selinc

Sel 3620 Firmware

= r203-v
πŸ’»
Selinc

Sel 3620 Firmware

= r203-v1
πŸ’»
Selinc

Sel 3620 Firmware

= r204
πŸ’»
Selinc

Sel 3620 Firmware

= r204-v1
πŸ’»
Selinc

Sel 3622 Firmware

= r202
πŸ’»
Selinc

Sel 3622 Firmware

= r203
πŸ’»
Selinc

Sel 3622 Firmware

= r203-v
πŸ’»
Selinc

Sel 3622 Firmware

= r203-v1
πŸ’»
Selinc

Sel 3622 Firmware

= r204
πŸ’»
Selinc

Sel 3622 Firmware

= r204-v1

References & Advisories

πŸ”— http://www.securityfocus.com/bid/99536
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSA-17-192-06
πŸ”— http://www.securityfocus.com/bid/99536
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSA-17-192-06

Related Vulnerabilities

CVE-2017-278510.0

An exploitable buffer overflow exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially cra...

CVE-2017-278810.0

A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet ...

CVE-2017-514510.0

An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. S...

CVE-2017-772210.0

In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when the SSH service is accessed with ...