CyberSec.Space Logo
CVEブラウザに戻る

CVE-2017-13995

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0530%
EPSS Percentile13.54th
Published2017年10月5日
Last Modified2026年5月13日

Vulnerability Description

An Improper Authentication issue was discovered in iniNet Solutions iniNet Webserver, all versions prior to V2.02.0100. The webserver does not properly authenticate users, which may allow a malicious attacker to access sensitive information such as HMI pages or modify PLC variables.

Affected Platforms (CPE)

📦
Spidercontrol

Ininet Webserver

<= 2.02.0000

References & Advisories

🔗 http://www.securityfocus.com/bid/100951
🔗 https://ics-cert.us-cert.gov/advisories/ICSA-17-264-04
🔗 http://www.securityfocus.com/bid/100951
🔗 https://ics-cert.us-cert.gov/advisories/ICSA-17-264-04

関連する脆弱性情報

CVE-2017-522610.0

When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioc...

CVE-2017-1437810.0

EMC RSA Authentication Agent API 8.5 for C and RSA Authentication Agent SDK 8.6 for C allow attackers to bypass authentication, ak...

CVE-2017-1684510.0

hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access.

CVE-2017-308810.0

Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF runtime engine. S...