Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-12733
HistorySep 09, 2017 - 1:29 a.m.

CVE-2017-12733

2017-09-0901:29:02
CWE-306
[email protected]
web.nvd.nist.gov
3

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.002

Percentile

59.5%

JSON

A Missing Authentication for Critical Function issue was discovered in OPW Fuel Management Systems SiteSentinel Integra 100, SiteSentinel Integra 500, and SiteSentinel iSite ATG consoles with the following software versions: older than V175, V175-V189, V191-V195, and V16Q3.1. An attacker may create an application user account to gain administrative privileges.

Affected configurations

Nvd
Node
opwglobalsitesentinel_isite_atg_firmwareRange175
OR
opwglobalsitesentinel_isite_atg_firmwareMatch16q3.1
OR
opwglobalsitesentinel_isite_atg_firmwareMatch189
OR
opwglobalsitesentinel_isite_atg_firmwareMatch191
OR
opwglobalsitesentinel_isite_atg_firmwareMatch195
AND
opwglobalsitesentinel_isite_atgMatch-
Node
opwglobalsitesentinel_integra_500_firmwareRange175
OR
opwglobalsitesentinel_integra_500_firmwareMatch16q3.1
OR
opwglobalsitesentinel_integra_500_firmwareMatch189
OR
opwglobalsitesentinel_integra_500_firmwareMatch191
OR
opwglobalsitesentinel_integra_500_firmwareMatch195
AND
opwglobalsitesentinel_integra_500Match-
Node
opwglobalsitesentinel_integra_100_firmwareRange175
OR
opwglobalsitesentinel_integra_100_firmwareMatch16q3.1
OR
opwglobalsitesentinel_integra_100_firmwareMatch189
OR
opwglobalsitesentinel_integra_100_firmwareMatch191
OR
opwglobalsitesentinel_integra_100_firmwareMatch195
AND
opwglobalsitesentinel_integra_100Match-
VendorProductVersionCPE
opwglobalsitesentinel_isite_atg_firmware*cpe:2.3:o:opwglobal:sitesentinel_isite_atg_firmware:*:*:*:*:*:*:*:*
opwglobalsitesentinel_isite_atg_firmware16q3.1cpe:2.3:o:opwglobal:sitesentinel_isite_atg_firmware:16q3.1:*:*:*:*:*:*:*
opwglobalsitesentinel_isite_atg_firmware189cpe:2.3:o:opwglobal:sitesentinel_isite_atg_firmware:189:*:*:*:*:*:*:*
opwglobalsitesentinel_isite_atg_firmware191cpe:2.3:o:opwglobal:sitesentinel_isite_atg_firmware:191:*:*:*:*:*:*:*
opwglobalsitesentinel_isite_atg_firmware195cpe:2.3:o:opwglobal:sitesentinel_isite_atg_firmware:195:*:*:*:*:*:*:*
opwglobalsitesentinel_isite_atg-cpe:2.3:h:opwglobal:sitesentinel_isite_atg:-:*:*:*:*:*:*:*
opwglobalsitesentinel_integra_500_firmware*cpe:2.3:o:opwglobal:sitesentinel_integra_500_firmware:*:*:*:*:*:*:*:*
opwglobalsitesentinel_integra_500_firmware16q3.1cpe:2.3:o:opwglobal:sitesentinel_integra_500_firmware:16q3.1:*:*:*:*:*:*:*
opwglobalsitesentinel_integra_500_firmware189cpe:2.3:o:opwglobal:sitesentinel_integra_500_firmware:189:*:*:*:*:*:*:*
opwglobalsitesentinel_integra_500_firmware191cpe:2.3:o:opwglobal:sitesentinel_integra_500_firmware:191:*:*:*:*:*:*:*
Rows per page:
1-10 of 181

Related

cvelist 1
prion 1
cve 1
ics 1
cvelist
cvelist
CVE-2017-12733
2017-09-09 01:00:00
prion
prion
Authentication flaw
2017-09-09 01:29:00
cve
cve
CVE-2017-12733
2017-09-09 01:29:02
ics
ics
OPW Fuel Management Systems SiteSentinel Integra and SiteSentinel iSite
2017-08-31 12:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.002

Percentile

59.5%

JSON
Related for NVD:CVE-2017-12733
cvelist1prion1cve1ics1