Lucene search

CertccCVELIST:CVE-2011-4036

HistoryDec 02, 2011 - 11:00 a.m.

CVE-2011-4036

2011-12-0211:00:00

certcc

www.cve.org

schneider electric

vijeo historian

citecthistorian

directory traversal

remote attackers

arbitrary files

AI Score

6.7

Confidence

Low

EPSS

0.004

Percentile

73.6%

JSON

Directory traversal vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier allows remote attackers to read arbitrary files via unspecified vectors.

References

www.citect.com/index.php?option=com_content&view=article&id=1656&Itemid=1695

www.scada.schneider-electric.com/sites/scada/en/login/historian-vulnerability.page

www.us-cert.gov/control_systems/pdf/ICSA-11-307-01.pdf