CVE-2018-7793

2018-12-2416:00:00

schneider

www.cve.org

8.6 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

A Credential Management vulnerability exists in FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.) which could cause unauthorized disclosure, modification, or disruption in service when the password is modified without permission.

CNA Affected

[
  {
    "product": "FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.)",
    "vendor": "Schneider Electric SE",
    "versions": [
      {
        "status": "affected",
        "version": "FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.)"
      }
    ]
  }
]

References

www.schneider-electric.com/en/download/document/SEVD-2018-353-03/