VAR-201503-0061
Vulnerability from variot - Updated: 2023-12-18 12:45Schneider Electric InduSoft Web Studio before 7.1.3.4 SP3 Patch 4 and InTouch Machine Edition 2014 before 7.1.3.4 SP3 Patch 4 rely on a hardcoded cleartext password to control read access to Project files and Project Configuration files, which makes it easier for local users to obtain sensitive information by discovering this password. Schneider Electric InduSoft Web Studio and InTouch Machine Edition are both embedded HMI software packages from Schneider Electric, France. Read access. A local attacker could exploit this vulnerability to obtain sensitive information by discovering passwords. Schneider Electric Products are prone to multiple local information-disclosure vulnerabilities. This may aid in further attacks. This product provides HMI clients with read, write tag and event monitoring capabilities
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201503-0061",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "wonderware intouch 2014",
"scope": "eq",
"trust": 1.2,
"vendor": "schneider electric",
"version": "7.1"
},
{
"model": "indusoft web studio",
"scope": "eq",
"trust": 1.2,
"vendor": "schneider electric",
"version": "7.1"
},
{
"model": "wonderware intouch 2014",
"scope": "lt",
"trust": 1.0,
"vendor": "schneider electric",
"version": "7.1.3.4"
},
{
"model": "edge",
"scope": "lt",
"trust": 1.0,
"vendor": "aveva",
"version": "7.1.3.4"
},
{
"model": "indusoft web studio",
"scope": "lt",
"trust": 0.8,
"vendor": "schneider electric",
"version": "7.1.3.4 sp3 patch 4"
},
{
"model": "intouch machine edition 2014",
"scope": "lt",
"trust": 0.8,
"vendor": "schneider electric",
"version": "7.1.3.4 sp3 patch 4"
},
{
"model": null,
"scope": "eq",
"trust": 0.6,
"vendor": "indusoft web studio",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.6,
"vendor": "wonderware intouch 2014",
"version": "*"
},
{
"model": "electric indusoft web studio sp3 patch",
"scope": "lt",
"trust": 0.6,
"vendor": "schneider",
"version": "7.1.3.44"
},
{
"model": "electric intouch machine edition sp3 patch",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "2014(\u003c7.1.3.44)"
},
{
"model": "intouch machine edition",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "20147.1.3.2"
},
{
"model": "indusoft web studio",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "7.1.3.2"
},
{
"model": "indusoft web studio sp patch",
"scope": "ne",
"trust": 0.3,
"vendor": "schneider electric",
"version": "7.1.3.434"
}
],
"sources": [
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "BID",
"id": "73387"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:aveva:aveva_edge:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "7.1.3.4",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:wonderware_intouch_2014:*:*:*:*:machine:*:*:*",
"cpe_name": [],
"versionEndExcluding": "7.1.3.4",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2015-0996"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Gleb Gritsai, Ilya Karpov, and Kirill Nesterov of Positive Technologies.",
"sources": [
{
"db": "BID",
"id": "73387"
}
],
"trust": 0.3
},
"cve": "CVE-2015-0996",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Local",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 2.1,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2015-0996",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Low",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "CNVD-2015-02059",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.6,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.2,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "9a491a14-2351-11e6-abef-000c29c66e3d",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.2,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.2,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "VHN-78942",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.1,
"vectorString": "AV:L/AC:L/AU:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2015-0996",
"trust": 1.8,
"value": "LOW"
},
{
"author": "CNVD",
"id": "CNVD-2015-02059",
"trust": 0.6,
"value": "LOW"
},
{
"author": "CNNVD",
"id": "CNNVD-201503-615",
"trust": 0.6,
"value": "LOW"
},
{
"author": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1",
"trust": 0.2,
"value": "LOW"
},
{
"author": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "LOW"
},
{
"author": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "LOW"
},
{
"author": "VULHUB",
"id": "VHN-78942",
"trust": 0.1,
"value": "LOW"
},
{
"author": "VULMON",
"id": "CVE-2015-0996",
"trust": 0.1,
"value": "LOW"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "VULHUB",
"id": "VHN-78942"
},
{
"db": "VULMON",
"id": "CVE-2015-0996"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schneider Electric InduSoft Web Studio before 7.1.3.4 SP3 Patch 4 and InTouch Machine Edition 2014 before 7.1.3.4 SP3 Patch 4 rely on a hardcoded cleartext password to control read access to Project files and Project Configuration files, which makes it easier for local users to obtain sensitive information by discovering this password. Schneider Electric InduSoft Web Studio and InTouch Machine Edition are both embedded HMI software packages from Schneider Electric, France. Read access. A local attacker could exploit this vulnerability to obtain sensitive information by discovering passwords. Schneider Electric Products are prone to multiple local information-disclosure vulnerabilities. This may aid in further attacks. This product provides HMI clients with read, write tag and event monitoring capabilities",
"sources": [
{
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "BID",
"id": "73387"
},
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"db": "VULHUB",
"id": "VHN-78942"
},
{
"db": "VULMON",
"id": "CVE-2015-0996"
}
],
"trust": 3.15
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2015-0996",
"trust": 4.1
},
{
"db": "ICS CERT",
"id": "ICSA-15-085-01",
"trust": 2.9
},
{
"db": "SCHNEIDER",
"id": "SEVD-2015-054-02",
"trust": 2.4
},
{
"db": "SCHNEIDER",
"id": "SEVD-2015-054-01",
"trust": 1.8
},
{
"db": "CNNVD",
"id": "CNNVD-201503-615",
"trust": 1.3
},
{
"db": "CNVD",
"id": "CNVD-2015-02059",
"trust": 1.2
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993",
"trust": 0.8
},
{
"db": "BID",
"id": "73387",
"trust": 0.4
},
{
"db": "IVD",
"id": "7D7F00B1-463F-11E9-9603-000C29342CB1",
"trust": 0.2
},
{
"db": "IVD",
"id": "9A491A14-2351-11E6-ABEF-000C29C66E3D",
"trust": 0.2
},
{
"db": "IVD",
"id": "9CA039B4-2351-11E6-ABEF-000C29C66E3D",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-78942",
"trust": 0.1
},
{
"db": "ICS CERT",
"id": "ICSA-15-085-01A",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2015-0996",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "VULHUB",
"id": "VHN-78942"
},
{
"db": "VULMON",
"id": "CVE-2015-0996"
},
{
"db": "BID",
"id": "73387"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"id": "VAR-201503-0061",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "VULHUB",
"id": "VHN-78942"
}
],
"trust": 2.0657392
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 1.2
}
],
"sources": [
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-02059"
}
]
},
"last_update_date": "2023-12-18T12:45:06.482000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "InTouch Machine Edition 2014 Vulnerabilities",
"trust": 0.8,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2015-054-02"
},
{
"title": "InduSoft Web Studi Vulnerabilities",
"trust": 0.8,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2015-054-01"
},
{
"title": "Patch for Schneider Electric InduSoft Web Studio and InTouch Machine Edition Information Disclosure Vulnerability (CNVD-2015-02059)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/56785"
},
{
"title": "IWS71.3.4",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=54647"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-200",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-78942"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "NVD",
"id": "CVE-2015-0996"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.9,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-15-085-01"
},
{
"trust": 2.4,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2015-054-02"
},
{
"trust": 1.8,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2015-054-01"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0996"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0996"
},
{
"trust": 0.3,
"url": "http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/200.html"
},
{
"trust": 0.1,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=38083"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-15-085-01a"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "VULHUB",
"id": "VHN-78942"
},
{
"db": "VULMON",
"id": "CVE-2015-0996"
},
{
"db": "BID",
"id": "73387"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"db": "VULHUB",
"id": "VHN-78942"
},
{
"db": "VULMON",
"id": "CVE-2015-0996"
},
{
"db": "BID",
"id": "73387"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-03-31T00:00:00",
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"date": "2015-03-31T00:00:00",
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"date": "2015-03-31T00:00:00",
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
},
{
"date": "2015-03-31T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"date": "2015-03-29T00:00:00",
"db": "VULHUB",
"id": "VHN-78942"
},
{
"date": "2015-03-29T00:00:00",
"db": "VULMON",
"id": "CVE-2015-0996"
},
{
"date": "2015-03-26T00:00:00",
"db": "BID",
"id": "73387"
},
{
"date": "2015-04-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"date": "2015-03-29T10:59:05.383000",
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"date": "2015-03-30T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-03-31T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-02059"
},
{
"date": "2018-10-30T00:00:00",
"db": "VULHUB",
"id": "VHN-78942"
},
{
"date": "2018-10-30T00:00:00",
"db": "VULMON",
"id": "CVE-2015-0996"
},
{
"date": "2015-03-26T00:00:00",
"db": "BID",
"id": "73387"
},
{
"date": "2015-04-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-001993"
},
{
"date": "2021-05-14T15:24:42.063000",
"db": "NVD",
"id": "CVE-2015-0996"
},
{
"date": "2021-05-18T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201503-615"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schneider Electric InduSoft Web Studio and InTouch Machine Edition 2014 Vulnerability in which important information is obtained",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2015-001993"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Information leakage",
"sources": [
{
"db": "IVD",
"id": "7d7f00b1-463f-11e9-9603-000c29342cb1"
},
{
"db": "IVD",
"id": "9a491a14-2351-11e6-abef-000c29c66e3d"
},
{
"db": "IVD",
"id": "9ca039b4-2351-11e6-abef-000c29c66e3d"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…