cnvd - cnvd-2017-22844

CNVD-2017-22844

Vulnerability from cnvd - Published: 2017-08-25

Title

Schneider Electric PowerSCADA Anywhere/Citect Anywhere信息泄露漏洞

Description

PowerSCADA Anywhere是SCADA和电力监测软件。Citect是工业自动化操作及监控软件。 PowerSCADA Anywhere 1.0及Citect Anywhere 1.0版本在实现上存在信息泄露漏洞，网络位置接近的攻击者可在连接请求中指定任意服务器目标节点。

Severity

中

Patch Name

Schneider Electric PowerSCADA Anywhere/Citect Anywhere信息泄露漏洞的补丁

Patch Description

PowerSCADA Anywhere是SCADA和电力监测软件。Citect是工业自动化操作及监控软件。 PowerSCADA Anywhere 1.0及Citect Anywhere 1.0版本在实现上存在信息泄露漏洞，网络位置接近的攻击者可在连接请求中指定任意服务器目标节点。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://www.citect.schneider-electric.com/scada/citectscada/downloads-updates/product-downloads?tab=extra_products

Reference

https://nvd.nist.gov/vuln/detail/CVE-2017-7970 https://ics-cert.us-cert.gov/advisories/ICSA-17-201-01

Impacted products

Name
['Schneider Electric Citect Anywhere 1.0', 'Schneider Electric PowerSCADA Anywhere 1.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-7970",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7970"
    }
  },
  "description": "PowerSCADA Anywhere\u662fSCADA\u548c\u7535\u529b\u76d1\u6d4b\u8f6f\u4ef6\u3002Citect\u662f\u5de5\u4e1a\u81ea\u52a8\u5316\u64cd\u4f5c\u53ca\u76d1\u63a7\u8f6f\u4ef6\u3002\r\n\r\nPowerSCADA Anywhere 1.0\u53caCitect Anywhere 1.0\u7248\u672c\u5728\u5b9e\u73b0\u4e0a\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u7f51\u7edc\u4f4d\u7f6e\u63a5\u8fd1\u7684\u653b\u51fb\u8005\u53ef\u5728\u8fde\u63a5\u8bf7\u6c42\u4e2d\u6307\u5b9a\u4efb\u610f\u670d\u52a1\u5668\u76ee\u6807\u8282\u70b9\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttps://www.citect.schneider-electric.com/scada/citectscada/downloads-updates/product-downloads?tab=extra_products",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-22844",
  "openTime": "2017-08-25",
  "patchDescription": "PowerSCADA Anywhere\u662fSCADA\u548c\u7535\u529b\u76d1\u6d4b\u8f6f\u4ef6\u3002Citect\u662f\u5de5\u4e1a\u81ea\u52a8\u5316\u64cd\u4f5c\u53ca\u76d1\u63a7\u8f6f\u4ef6\u3002\r\n\r\nPowerSCADA Anywhere 1.0\u53caCitect Anywhere 1.0\u7248\u672c\u5728\u5b9e\u73b0\u4e0a\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u7f51\u7edc\u4f4d\u7f6e\u63a5\u8fd1\u7684\u653b\u51fb\u8005\u53ef\u5728\u8fde\u63a5\u8bf7\u6c42\u4e2d\u6307\u5b9a\u4efb\u610f\u670d\u52a1\u5668\u76ee\u6807\u8282\u70b9\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Schneider Electric PowerSCADA Anywhere/Citect Anywhere\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Schneider Electric Citect Anywhere 1.0",
      "Schneider Electric PowerSCADA Anywhere 1.0"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-7970\r\nhttps://ics-cert.us-cert.gov/advisories/ICSA-17-201-01",
  "serverity": "\u4e2d",
  "submitTime": "2017-07-24",
  "title": "Schneider Electric PowerSCADA Anywhere/Citect Anywhere\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2017-7970 (GCVE-0-2017-7970)

Vulnerability from cvelistv5 – Published: 2017-09-25 19:00 – Updated: 2024-09-17 02:56

Summary

A vulnerability exists in Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 that allows the ability to specify Arbitrary Server Target Nodes in connection requests to the Secure Gateway and Server components.

Severity ?

No CVSS data available.

CWE

Information Exposure

Assigner

schneider

References

URL

Tags

	http://www.securityfocus.com/bid/99913	vdb-entryx_refsource_BID
	https://www.citect.schneider-electric.com/safety-…	x_refsource_CONFIRM
	http://www.schneider-electric.com/en/download/doc…	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Schneider Electric SE

PowerSCADA Anywhere

Affected: Version 1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2

Schneider Electric SE

Citect Anywhere

Affected: version 1.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T16:19:29.484Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "99913",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/99913"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "PowerSCADA Anywhere",
          "vendor": "Schneider Electric SE",
          "versions": [
            {
              "status": "affected",
              "version": "Version 1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2"
            }
          ]
        },
        {
          "product": "Citect Anywhere",
          "vendor": "Schneider Electric SE",
          "versions": [
            {
              "status": "affected",
              "version": "version 1.0"
            }
          ]
        }
      ],
      "datePublic": "2017-06-22T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability exists in Schneider Electric\u0027s PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 that allows the ability to specify Arbitrary Server Target Nodes in connection requests to the Secure Gateway and Server components."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information Exposure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-26T09:57:01",
        "orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
        "shortName": "schneider"
      },
      "references": [
        {
          "name": "99913",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/99913"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cybersecurity@schneider-electric.com",
          "DATE_PUBLIC": "2017-06-22T00:00:00",
          "ID": "CVE-2017-7970",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "PowerSCADA Anywhere",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Version 1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Citect Anywhere",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "version 1.0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Schneider Electric SE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability exists in Schneider Electric\u0027s PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 that allows the ability to specify Arbitrary Server Target Nodes in connection requests to the Secure Gateway and Server components."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Information Exposure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "99913",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/99913"
            },
            {
              "name": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere",
              "refsource": "CONFIRM",
              "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
            },
            {
              "name": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/",
              "refsource": "CONFIRM",
              "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
    "assignerShortName": "schneider",
    "cveId": "CVE-2017-7970",
    "datePublished": "2017-09-25T19:00:00Z",
    "dateReserved": "2017-04-19T00:00:00",
    "dateUpdated": "2024-09-17T02:56:33.769Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-22844

CVE-2017-7970 (GCVE-0-2017-7970)

Tags

Sightings

Nomenclature