Vulnerabilities > CVE-2017-9959 - Unspecified vulnerability in Schneider-Electric U.Motion Builder 1.2.1

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

schneider-electric

NVD

Published: 2017-09-26

Updated: 2019-10-03

Summary

A vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which the system accepts reboot in session from unauthenticated users, supporting a denial of service condition.

Vulnerable Configurations

Part	Description	Count
Application	Schneider-Electric Schneider Electric U.Motion Builder 1.2.1	1

References

http://www.schneider-electric.com/en/download/document/SEVD-2017-178-01/
http://www.securityfocus.com/bid/99344