VAR-201702-0301
Vulnerability from variot - Updated: 2023-12-18 12:37An issue was discovered in Schneider Electric Unity PRO prior to V11.1. Unity projects can be compiled as x86 instructions and loaded onto the PLC Simulator delivered with Unity PRO. These x86 instructions are subsequently executed directly by the simulator. A specially crafted patched Unity project file can make the simulator execute malicious code by redirecting the control flow of these instructions. Unity Pro is a universal IEC61131-3 programming, debugging and runtime software package for Premium, Atrium and Quantum PLCs. A vulnerability could be exploited by a remote attacker to execute arbitrary code in the context of an application and could lead to a denial of service attack. Failed exploit attempts may result in a denial-of-service condition
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201702-0301",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "unity pro",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "11.0"
},
{
"model": "unity pro",
"scope": "lt",
"trust": 0.8,
"vendor": "schneider electric",
"version": "11.1"
},
{
"model": "electric unity pro",
"scope": null,
"trust": 0.6,
"vendor": "schneider",
"version": null
},
{
"model": "electric unity pro",
"scope": "lt",
"trust": 0.6,
"vendor": "schneider",
"version": "11.1"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider electric",
"version": "11.0"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "8"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "7.0"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "6.1"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "6.0"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "6"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "11"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "10"
},
{
"model": "unity pro",
"scope": "ne",
"trust": 0.3,
"vendor": "schneider electric",
"version": "11.1"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "unity pro",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "BID",
"id": "93830"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "11.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2016-8354"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The vendor reported this issue.",
"sources": [
{
"db": "BID",
"id": "93830"
}
],
"trust": 0.3
},
"cve": "CVE-2016-8354",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 4.9,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": true,
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "High",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 5.1,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2016-8354",
"impactScore": null,
"integrityImpact": "Partial",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2016-10461",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.6,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 4.9,
"id": "CNVD-2016-10617",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 4.9,
"id": "VHN-97174",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:H/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.0,
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
{
"attackComplexity": "High",
"attackVector": "Local",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 7.0,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2016-8354",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "Required",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2016-8354",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2016-10461",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2016-10617",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201610-902",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc",
"trust": 0.2,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-97174",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "VULHUB",
"id": "VHN-97174"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "An issue was discovered in Schneider Electric Unity PRO prior to V11.1. Unity projects can be compiled as x86 instructions and loaded onto the PLC Simulator delivered with Unity PRO. These x86 instructions are subsequently executed directly by the simulator. A specially crafted patched Unity project file can make the simulator execute malicious code by redirecting the control flow of these instructions. Unity Pro is a universal IEC61131-3 programming, debugging and runtime software package for Premium, Atrium and Quantum PLCs. A vulnerability could be exploited by a remote attacker to execute arbitrary code in the context of an application and could lead to a denial of service attack. Failed exploit attempts may result in a denial-of-service condition",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "BID",
"id": "93830"
},
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "VULHUB",
"id": "VHN-97174"
}
],
"trust": 3.24
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2016-8354",
"trust": 3.6
},
{
"db": "ICS CERT",
"id": "ICSA-16-306-03",
"trust": 3.4
},
{
"db": "BID",
"id": "93830",
"trust": 2.6
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2016-10461",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988",
"trust": 0.8
},
{
"db": "CNVD",
"id": "CNVD-2016-10617",
"trust": 0.6
},
{
"db": "SCHNEIDER",
"id": "SEVD-2016-288-01",
"trust": 0.3
},
{
"db": "IVD",
"id": "3D0E9372-604F-483C-81B6-D6CA426DE8CC",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-97174",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "VULHUB",
"id": "VHN-97174"
},
{
"db": "BID",
"id": "93830"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"id": "VAR-201702-0301",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "VULHUB",
"id": "VHN-97174"
}
],
"trust": 2.3333333
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 1.4
}
],
"sources": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
}
]
},
"last_update_date": "2023-12-18T12:37:37.410000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "SEVD-2016-288-01",
"trust": 0.8,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2016-288-01"
},
{
"title": "Patch for Schneider Electric Unity PRO Remote Code Execution Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/83328"
},
{
"title": "Patch for Schneider Electric Unity Pro Remote Code Execution Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/83536"
},
{
"title": "Schneider Electric Unity Pro Security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=65221"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-94",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-97174"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "NVD",
"id": "CVE-2016-8354"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.4,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-16-306-03"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/93830"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-8354"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-8354"
},
{
"trust": 0.3,
"url": "http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true"
},
{
"trust": 0.3,
"url": "http://download.schneider-electric.com/files?p_reference=sevd-2016-288-01\u0026p_endoctype=technical%20leaflet\u0026p_file_id=4837908514\u0026p_file_name=sevd-2016-288-01+unity+simulator.pdf"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "VULHUB",
"id": "VHN-97174"
},
{
"db": "BID",
"id": "93830"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"db": "VULHUB",
"id": "VHN-97174"
},
{
"db": "BID",
"id": "93830"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-11-01T00:00:00",
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"date": "2016-11-01T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"date": "2016-11-04T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"date": "2017-02-13T00:00:00",
"db": "VULHUB",
"id": "VHN-97174"
},
{
"date": "2016-10-14T00:00:00",
"db": "BID",
"id": "93830"
},
{
"date": "2017-04-04T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"date": "2017-02-13T21:59:00.860000",
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"date": "2016-11-02T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-11-01T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"date": "2016-11-04T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-10617"
},
{
"date": "2017-03-15T00:00:00",
"db": "VULHUB",
"id": "VHN-97174"
},
{
"date": "2016-11-24T01:07:00",
"db": "BID",
"id": "93830"
},
{
"date": "2017-04-04T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-007988"
},
{
"date": "2017-03-15T19:57:22.060000",
"db": "NVD",
"id": "CVE-2016-8354"
},
{
"date": "2016-11-02T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schneider Electric Unity PRO Remote code execution vulnerability",
"sources": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNVD",
"id": "CNVD-2016-10461"
},
{
"db": "CNVD",
"id": "CNVD-2016-10617"
}
],
"trust": 1.4
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Code injection",
"sources": [
{
"db": "IVD",
"id": "3d0e9372-604f-483c-81b6-d6ca426de8cc"
},
{
"db": "CNNVD",
"id": "CNNVD-201610-902"
}
],
"trust": 0.8
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…