Security Misconfiguration Vulnerability in Schneider Electric's IGSS SCADA Software Versions 12 and Prior

Security Misconfiguration Vulnerability in Schneider Electric's IGSS SCADA Software Versions 12 and Prior

CVE-2017-9967 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

A security misconfiguration vulnerability exists in Schneider Electric's IGSS SCADA Software versions 12 and prior. Security configuration settings such as Address Space Layout Randomization (ASLR) and Data Execution prevention (DEP) were not properly configured resulting in weak security.

Learn more about our Web Application Penetration Testing UK.