Vulnerabilities > CVE-2017-7972 - Unspecified vulnerability in Schneider-Electric Citect Anywhere and Powerscada Anywhere
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL low complexity
schneider-electric
Summary
A vulnerability exists in Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 that allows the ability to escape out of remote PowerSCADA Anywhere applications and launch other processes.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |