Lucene search
HistorySep 18, 2014 - 10:55 a.m.
CVE-2014-5412
cve-2014-5412
schneider electric
scada
security vulnerability
clearscada 2010 r3
clearscada 2014 r1
remote access
guest account
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.8%
Schneider Electric StruxureWare SCADA Expert ClearSCADA 2010 R3 through 2014 R1 allows remote attackers to read database records by leveraging access to the guest account.
Affected configurations
Node
avevaclearscadaMatch2010r3
ORavevaclearscadaMatch2010r3.1
ORavevaclearscadaMatch2013r1
ORavevaclearscadaMatch2013r1.1
ORavevaclearscadaMatch2013r1.1a
ORavevaclearscadaMatch2013r1.2
ORavevaclearscadaMatch2013r2
ORschneider-electricscada_expert_clearscadaMatch2013r2.1
ORschneider-electricscada_expert_clearscadaMatch2014r1
Related
nvd
nvd
CVE-2014-5412
2014-09-18 10:55:11
checkpoint_advisories
checkpoint_advisories
prion
prion
Design/Logic Flaw
2014-09-18 10:55:00
cvelist
cvelist
CVE-2014-5412
2014-09-18 10:00:00
ics
ics
Schneider Electric SCADA Expert ClearSCADA Vulnerabilities (Update A)
2018-09-06 12:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.8%
Related for CVE-2014-5412