cvelistv5 - cve-2017-5161

CVE-2017-5161 (GCVE-0-2017-5161)

Vulnerability from cvelistv5 – Published: 2017-02-13 21:00 – Updated: 2024-08-05 14:55

Summary

Severity ?

No CVSS data available.

CWE

Sielco Sistemi Winlog SCADA Software DLL Hijacking

Assigner

icscert

References

URL

Tags

	http://www.securityfocus.com/bid/96119	vdb-entryx_refsource_BID
	https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01	Affected: Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:55:34.973Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "96119",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/96119"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01"
            }
          ]
        }
      ],
      "datePublic": "2017-02-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Sielco Sistemi Winlog SCADA Software DLL Hijacking",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-02-14T10:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "name": "96119",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/96119"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2017-5161",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Sielco Sistemi Winlog SCADA Software DLL Hijacking"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "96119",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/96119"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2017-5161",
    "datePublished": "2017-02-13T21:00:00",
    "dateReserved": "2017-01-03T00:00:00",
    "dateUpdated": "2024-08-05T14:55:34.973Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sielcosistemi:winlog_lite:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.01.10\", \"matchCriteriaId\": \"03372132-C2BD-471F-A2D0-3CE01A3BB432\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sielcosistemi:winlog_pro:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.01.10\", \"matchCriteriaId\": \"6BE1A9F0-0F59-4133-8876-16CF6936ACEC\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.\"}, {\"lang\": \"es\", \"value\": \"Ha sido descubierto un problema en Sielco Sistemi Software Winlog Lite SCADA Software, versiones anteriores a la Versi\\u00f3n 3.02.01 y Winlog Pro SCADA Software, versiones anteriores a la Versi\\u00f3n 3.02.01. Se ha identificado una vulnerabilidad no controlada del elemento de ruta de acceso de b\\u00fasqueda (DLL Hijacking). La explotaci\\u00f3n de esta vulnerabilidad podr\\u00eda dar a un atacante acceso al sistema con el mismo nivel de privilegio que la aplicaci\\u00f3n que utiliza la DLL maliciosa.\"}]",
      "id": "CVE-2017-5161",
      "lastModified": "2024-11-21T03:27:10.700",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H\", \"baseScore\": 7.2, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.6, \"impactScore\": 6.0}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2017-02-13T21:59:02.830",
      "references": "[{\"url\": \"http://www.securityfocus.com/bid/96119\", \"source\": \"ics-cert@hq.dhs.gov\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01\", \"source\": \"ics-cert@hq.dhs.gov\", \"tags\": [\"Mitigation\", \"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.securityfocus.com/bid/96119\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Third Party Advisory\", \"US Government Resource\"]}]",
      "sourceIdentifier": "ics-cert@hq.dhs.gov",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-427\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2017-5161\",\"sourceIdentifier\":\"ics-cert@hq.dhs.gov\",\"published\":\"2017-02-13T21:59:02.830\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.\"},{\"lang\":\"es\",\"value\":\"Ha sido descubierto un problema en Sielco Sistemi Software Winlog Lite SCADA Software, versiones anteriores a la Versi\u00f3n 3.02.01 y Winlog Pro SCADA Software, versiones anteriores a la Versi\u00f3n 3.02.01. Se ha identificado una vulnerabilidad no controlada del elemento de ruta de acceso de b\u00fasqueda (DLL Hijacking). La explotaci\u00f3n de esta vulnerabilidad podr\u00eda dar a un atacante acceso al sistema con el mismo nivel de privilegio que la aplicaci\u00f3n que utiliza la DLL maliciosa.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":7.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.6,\"impactScore\":6.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-427\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sielcosistemi:winlog_lite:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.01.10\",\"matchCriteriaId\":\"03372132-C2BD-471F-A2D0-3CE01A3BB432\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sielcosistemi:winlog_pro:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.01.10\",\"matchCriteriaId\":\"6BE1A9F0-0F59-4133-8876-16CF6936ACEC\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/96119\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Mitigation\",\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/bid/96119\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\",\"US Government Resource\"]}]}}"
  }
}

CNVD-2017-01561

Vulnerability from cnvd - Published: 2017-02-20

Title

Sielco Sistemi Winlog Pro/ Winlog Lite DLL加载本地代码执行漏洞

Description

SIELCO SISTEMI Winlog是一款用于对SCADA HMI监控软件进行数据采集和远程控制的应用程序。 Sielco Sistemi Winlog Pro and Winlog Lite存在本地代码执行漏洞。攻击者利用该漏洞在受影响的应用程序中执行任意代码或使应用程序崩溃，造成拒绝服务。

Severity

中

Patch Name

Sielco Sistemi Winlog Pro/ Winlog Lite DLL加载本地代码执行漏洞的补丁

Patch Description

SIELCO SISTEMI Winlog是一款用于对SCADA HMI监控软件进行数据采集和远程控制的应用程序。 Sielco Sistemi Winlog Pro and Winlog Lite存在本地代码执行漏洞。攻击者利用该漏洞在受影响的应用程序中执行任意代码或使应用程序崩溃，造成拒绝服务。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01

Reference

http://www.securityfocus.com/bid/96119

Impacted products

Name
['SIELCO SISTEMI Winlog Pro 2.7.9', 'SIELCO SISTEMI Winlog Pro 2.7', 'SIELCO SISTEMI Winlog Pro 2.7.1', 'SIELCO SISTEMI Winlog Lite 2.07.14', 'SIELCO SISTEMI Winlog Pro 2.7.18', 'SIELCO SISTEMI Winlog Pro 2.7.16', 'SIELCO SISTEMI Winlog Lite 2.7.9', 'SIELCO SISTEMI Winlog Lite 2.07.16']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "96119"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-5161",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5161"
    }
  },
  "description": "SIELCO SISTEMI Winlog\u662f\u4e00\u6b3e\u7528\u4e8e\u5bf9SCADA HMI\u76d1\u63a7\u8f6f\u4ef6\u8fdb\u884c\u6570\u636e\u91c7\u96c6\u548c\u8fdc\u7a0b\u63a7\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nSielco Sistemi Winlog Pro and Winlog Lite\u5b58\u5728\u672c\u5730\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u53d7\u5f71\u54cd\u7684\u5e94\u7528\u7a0b\u5e8f\u4e2d\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u4f7f\u5e94\u7528\u7a0b\u5e8f\u5d29\u6e83\uff0c\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Karn Ganeshen",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://ics-cert.us-cert.gov/advisories/ICSA-17-038-01",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-01561",
  "openTime": "2017-02-20",
  "patchDescription": "SIELCO SISTEMI Winlog\u662f\u4e00\u6b3e\u7528\u4e8e\u5bf9SCADA HMI\u76d1\u63a7\u8f6f\u4ef6\u8fdb\u884c\u6570\u636e\u91c7\u96c6\u548c\u8fdc\u7a0b\u63a7\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nSielco Sistemi Winlog Pro and Winlog Lite\u5b58\u5728\u672c\u5730\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u53d7\u5f71\u54cd\u7684\u5e94\u7528\u7a0b\u5e8f\u4e2d\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u4f7f\u5e94\u7528\u7a0b\u5e8f\u5d29\u6e83\uff0c\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Sielco Sistemi Winlog Pro/ Winlog Lite DLL\u52a0\u8f7d\u672c\u5730\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "SIELCO SISTEMI Winlog Pro 2.7.9",
      "SIELCO SISTEMI Winlog Pro 2.7",
      "SIELCO SISTEMI Winlog Pro 2.7.1",
      "SIELCO SISTEMI Winlog Lite 2.07.14",
      "SIELCO SISTEMI Winlog Pro 2.7.18",
      "SIELCO SISTEMI Winlog Pro 2.7.16",
      "SIELCO SISTEMI Winlog Lite 2.7.9",
      "SIELCO SISTEMI Winlog Lite  2.07.16"
    ]
  },
  "referenceLink": "http://www.securityfocus.com/bid/96119",
  "serverity": "\u4e2d",
  "submitTime": "2017-02-10",
  "title": "Sielco Sistemi Winlog Pro/ Winlog Lite DLL\u52a0\u8f7d\u672c\u5730\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

VAR-201702-0679

Vulnerability from variot - Updated: 2023-12-18 12:37

An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL. SIELCO SISTEMI Winlog is an application for data acquisition and remote control of SCADA HMI monitoring software. A native code execution vulnerability exists in Sielco Sistemi Winlog Pro and Winlog Lite. An attacker exploited the vulnerability to execute arbitrary code or crash an application in an affected application, causing a denial of service

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201702-0679",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "winlog pro",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "sielcosistemi",
        "version": "3.01.10"
      },
      {
        "model": "winlog lite",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "sielcosistemi",
        "version": "3.01.10"
      },
      {
        "model": "winlog lite",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "sielco sistemi",
        "version": "3.02.01"
      },
      {
        "model": "winlog pro",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "sielco sistemi",
        "version": "3.02.01"
      },
      {
        "model": "sistemi winlog pro",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.7.9"
      },
      {
        "model": "sistemi winlog pro",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.7"
      },
      {
        "model": "sistemi winlog pro",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.7.1"
      },
      {
        "model": "sistemi winlog lite",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.07.14"
      },
      {
        "model": "sistemi winlog pro",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.7.18"
      },
      {
        "model": "sistemi winlog pro",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.7.16"
      },
      {
        "model": "sistemi winlog lite",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.7.9"
      },
      {
        "model": "sistemi winlog lite",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielco",
        "version": "2.07.16"
      },
      {
        "model": "winlog lite",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielcosistemi",
        "version": "3.01.10"
      },
      {
        "model": "winlog pro",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "sielcosistemi",
        "version": "3.01.10"
      },
      {
        "model": "winlog pro",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.7.18"
      },
      {
        "model": "winlog pro",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.7.16"
      },
      {
        "model": "winlog pro",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.7.9"
      },
      {
        "model": "winlog pro",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.7.1"
      },
      {
        "model": "winlog pro",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.7"
      },
      {
        "model": "winlog lite",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.7.9"
      },
      {
        "model": "winlog lite",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.07.16"
      },
      {
        "model": "winlog lite",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "2.07.14"
      },
      {
        "model": "winlog pro",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "3.2.1"
      },
      {
        "model": "winlog lite",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "sielcosistemi",
        "version": "3.2.1"
      },
      {
        "model": null,
        "scope": "eq",
        "trust": 0.2,
        "vendor": "winlog lite",
        "version": "*"
      },
      {
        "model": null,
        "scope": "eq",
        "trust": 0.2,
        "vendor": "winlog pro",
        "version": "*"
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "db": "BID",
        "id": "96119"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:sielcosistemi:winlog_lite:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.01.10",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sielcosistemi:winlog_pro:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.01.10",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Karn Ganeshen",
    "sources": [
      {
        "db": "BID",
        "id": "96119"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ],
    "trust": 0.9
  },
  "cve": "CVE-2017-5161",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": true,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Medium",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 9.3,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2017-5161",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 1.9,
            "id": "CNVD-2017-01561",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 1.9,
            "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "MEDIUM",
            "trust": 0.2,
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.9 [IVD]"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 0.6,
            "impactScore": 6.0,
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "trust": 1.0,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          {
            "attackComplexity": "High",
            "attackVector": "Local",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 7.2,
            "baseSeverity": "High",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2017-5161",
            "impactScore": null,
            "integrityImpact": "High",
            "privilegesRequired": "High",
            "scope": "Changed",
            "trust": 0.8,
            "userInteraction": "Required",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2017-5161",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2017-01561",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201702-383",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "IVD",
            "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61",
            "trust": 0.2,
            "value": "CRITICAL"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL. SIELCO SISTEMI Winlog is an application for data acquisition and remote control of SCADA HMI monitoring software. A native code execution vulnerability exists in Sielco Sistemi Winlog Pro and Winlog Lite. An attacker exploited the vulnerability to execute arbitrary code or crash an application in an affected application, causing a denial of service",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "db": "BID",
        "id": "96119"
      },
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      }
    ],
    "trust": 2.61
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2017-5161",
        "trust": 3.5
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-17-038-01",
        "trust": 2.7
      },
      {
        "db": "BID",
        "id": "96119",
        "trust": 2.5
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236",
        "trust": 0.8
      },
      {
        "db": "IVD",
        "id": "2ECB868A-3B72-437C-A2E8-7597DB52BF61",
        "trust": 0.2
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "db": "BID",
        "id": "96119"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "id": "VAR-201702-0679",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      }
    ],
    "trust": 1.5875
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "ICS"
        ],
        "sub_category": null,
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      }
    ]
  },
  "last_update_date": "2023-12-18T12:37:36.552000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "WinLog Pro",
        "trust": 0.8,
        "url": "https://www.sielcosistemi.com/en/download/public/download.html"
      },
      {
        "title": "Sielco Sistemi Winlog Pro/ Winlog Lite DLL loads patches for native code execution vulnerabilities",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/89505"
      },
      {
        "title": "Sielco Sistemi Winlog Pro/ Winlog Lite Fixes for code injection vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=67685"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-427",
        "trust": 1.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.7,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-038-01"
      },
      {
        "trust": 2.2,
        "url": "http://www.securityfocus.com/bid/96119"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5161"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-5161"
      },
      {
        "trust": 0.3,
        "url": "http://blog.rapid7.com/?p=5325"
      },
      {
        "trust": 0.3,
        "url": "http://blog.metasploit.com/2010/08/exploiting-dll-hijacking-flaws.html"
      },
      {
        "trust": 0.3,
        "url": "http://blogs.technet.com/b/srd/archive/2010/08/23/more-information-about-dll-preloading-remote-attack-vector.aspx"
      },
      {
        "trust": 0.3,
        "url": "http://www.sielcosistemi.com/en/products/winlog_scada_hmi/"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "db": "BID",
        "id": "96119"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "db": "BID",
        "id": "96119"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-02-18T00:00:00",
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "date": "2017-02-20T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "date": "2017-02-07T00:00:00",
        "db": "BID",
        "id": "96119"
      },
      {
        "date": "2017-04-05T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "date": "2017-02-13T21:59:02.830000",
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "date": "2017-02-13T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-02-18T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      },
      {
        "date": "2017-03-07T05:02:00",
        "db": "BID",
        "id": "96119"
      },
      {
        "date": "2017-04-05T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-002236"
      },
      {
        "date": "2017-03-15T17:44:08.717000",
        "db": "NVD",
        "id": "CVE-2017-5161"
      },
      {
        "date": "2017-02-13T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Sielco Sistemi Winlog Pro/ Winlog Lite DLL Load Local Code Execution Vulnerability",
    "sources": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-01561"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Code injection",
    "sources": [
      {
        "db": "IVD",
        "id": "2ecb868a-3b72-437c-a2e8-7597db52bf61"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201702-383"
      }
    ],
    "trust": 0.8
  }
}

FKIE_CVE-2017-5161

Vulnerability from fkie_nvd - Published: 2017-02-13 21:59 - Updated: 2025-04-20 01:37

Severity ?

7.2 (High) - CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

Summary

References

URL	Tags
ics-cert@hq.dhs.gov	http://www.securityfocus.com/bid/96119	Third Party Advisory, VDB Entry
ics-cert@hq.dhs.gov	https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01	Mitigation, Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/96119	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01	Mitigation, Third Party Advisory, US Government Resource

Impacted products

	Vendor	Product	Version
	sielcosistemi	winlog_lite	*
	sielcosistemi	winlog_pro	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:sielcosistemi:winlog_lite:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "03372132-C2BD-471F-A2D0-3CE01A3BB432",
              "versionEndIncluding": "3.01.10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sielcosistemi:winlog_pro:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6BE1A9F0-0F59-4133-8876-16CF6936ACEC",
              "versionEndIncluding": "3.01.10",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL."
    },
    {
      "lang": "es",
      "value": "Ha sido descubierto un problema en Sielco Sistemi Software Winlog Lite SCADA Software, versiones anteriores a la Versi\u00f3n 3.02.01 y Winlog Pro SCADA Software, versiones anteriores a la Versi\u00f3n 3.02.01. Se ha identificado una vulnerabilidad no controlada del elemento de ruta de acceso de b\u00fasqueda (DLL Hijacking). La explotaci\u00f3n de esta vulnerabilidad podr\u00eda dar a un atacante acceso al sistema con el mismo nivel de privilegio que la aplicaci\u00f3n que utiliza la DLL maliciosa."
    }
  ],
  "id": "CVE-2017-5161",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.2,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 0.6,
        "impactScore": 6.0,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-02-13T21:59:02.830",
  "references": [
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/96119"
    },
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Mitigation",
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/96119"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mitigation",
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
    }
  ],
  "sourceIdentifier": "ics-cert@hq.dhs.gov",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-427"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ICSA-17-038-01

Vulnerability from csaf_cisa - Published: 2017-02-07 00:00 - Updated: 2017-02-07 00:00

Summary

ICSA-17-038-01_Sielco Sistemi Winlog SCADA Software

Notes

CISA Disclaimer

This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov

Summary

Researcher Karn Ganeshen identified this vulnerability.

Exploitability

No known public exploits specifically target this vulnerability. This vulnerability is not remotely exploitable. High skill level is needed to exploit.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "Karn Ganeshen"
        ],
        "summary": "identifying this vulnerability"
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
        "title": "CISA Disclaimer"
      },
      {
        "category": "summary",
        "text": "Researcher Karn Ganeshen identified this vulnerability.",
        "title": "Summary"
      },
      {
        "category": "other",
        "text": "No known public exploits specifically target this vulnerability. This vulnerability is not remotely exploitable. High skill level is needed to exploit.",
        "title": "Exploitability"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "CISAservicedesk@cisa.dhs.gov",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-17-038-01 JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2017/icsa-17-038-01.json"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-17-038-01 Web Version",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-17-038-01"
      }
    ],
    "title": "ICSA-17-038-01_Sielco Sistemi Winlog SCADA Software",
    "tracking": {
      "current_release_date": "2017-02-07T00:00:00.000000Z",
      "generator": {
        "date": "2023-01-12T21:18:50.831Z",
        "engine": {
          "name": "Secvisogram",
          "version": "2.0.0"
        }
      },
      "id": "ICSA-17-038-01",
      "initial_release_date": "2017-02-07T00:00:00.000000Z",
      "revision_history": [
        {
          "date": "2017-02-07T00:00:00.000000Z",
          "legacy_version": "Initial",
          "number": "1",
          "summary": "ICSA-17-038-01 Sielco Sistemi Winlog SCADA Software"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 3.02.01",
                "product": {
                  "name": "Winlog Lite SCADA Software: versions prior to Version 3.02.01",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "Winlog Lite SCADA Software"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 3.02.01",
                "product": {
                  "name": "Winlog Pro SCADA Software: versions prior to Version 3.02.01",
                  "product_id": "CSAFPID-0002"
                }
              }
            ],
            "category": "product_name",
            "name": "Winlog Pro SCADA Software"
          }
        ],
        "category": "vendor",
        "name": "Sielco Sistemi"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-5161",
      "cwe": {
        "id": "CWE-427",
        "name": "Uncontrolled Search Path Element"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.CVE-2017-5161 has been assigned to this vulnerability. A CVSS v3 base score of 7.2 has been assigned; the CVSS vector string is (AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H).",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "references": [
        {
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "The most current versions of Winlog Lite and Winlog Pro SCADA software are available here:",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.sielcosistemi.com/en/download/public/download.html"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ],
      "title": "CVE-2017-5161"
    }
  ]
}

GHSA-25CV-W78Q-2RMP

Vulnerability from github – Published: 2022-05-17 02:55 – Updated: 2022-05-17 02:55

Details

Severity ?

7.2 (High)


                  
                    CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2017-5161"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-427"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-02-13T21:59:00Z",
    "severity": "HIGH"
  },
  "details": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.",
  "id": "GHSA-25cv-w78q-2rmp",
  "modified": "2022-05-17T02:55:25Z",
  "published": "2022-05-17T02:55:25Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5161"
    },
    {
      "type": "WEB",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/96119"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2017-5161

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2017-5161

Aliases

CVE-2017-5161

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2017-5161",
    "description": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.",
    "id": "GSD-2017-5161",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2017-5161"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2017-5161"
      ],
      "details": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.",
      "id": "GSD-2017-5161",
      "modified": "2023-12-13T01:21:13.846004Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "ID": "CVE-2017-5161",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Sielco Sistemi Winlog SCADA Software prior to Version 3.02.01"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Sielco Sistemi Winlog SCADA Software DLL Hijacking"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "96119",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/96119"
          },
          {
            "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01",
            "refsource": "MISC",
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:sielcosistemi:winlog_lite:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.01.10",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sielcosistemi:winlog_pro:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.01.10",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2017-5161"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-427"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01",
              "refsource": "MISC",
              "tags": [
                "Mitigation",
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01"
            },
            {
              "name": "96119",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/96119"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 0.6,
          "impactScore": 6.0
        }
      },
      "lastModifiedDate": "2017-03-15T17:44Z",
      "publishedDate": "2017-02-13T21:59Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2017-5161 (GCVE-0-2017-5161)

CNVD-2017-01561

VAR-201702-0679

FKIE_CVE-2017-5161

ICSA-17-038-01

GHSA-25CV-W78Q-2RMP

GSD-2017-5161

Tags

Sightings

Nomenclature