CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2017-13995

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0530%
EPSS Percentile13.54th
Published2017年10月5日
Last Modified2026年5月13日

Vulnerability Description

An Improper Authentication issue was discovered in iniNet Solutions iniNet Webserver, all versions prior to V2.02.0100. The webserver does not properly authenticate users, which may allow a malicious attacker to access sensitive information such as HMI pages or modify PLC variables.

Affected Platforms (CPE)

📦
Spidercontrol

Ininet Webserver

<= 2.02.0000

References & Advisories

🔗 http://www.securityfocus.com/bid/100951
🔗 https://ics-cert.us-cert.gov/advisories/ICSA-17-264-04
🔗 http://www.securityfocus.com/bid/100951
🔗 https://ics-cert.us-cert.gov/advisories/ICSA-17-264-04

相關漏洞威脅

CVE-2017-522610.0

When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioc...

CVE-2017-772210.0

In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when the SSH service is accessed with ...

CVE-2017-379110.0

A vulnerability in the web-based GUI of Cisco Prime Home could allow an unauthenticated, remote attacker to bypass authentication ...

CVE-2017-232010.0

A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenti...