Search

Find a vulnerability

Search criteria

    6 vulnerabilities found for wonderware_archestra_logger by schneider-electric

    CVE-2017-9631 (GCVE-0-2017-9631)

    Vulnerability from nvd – Published: 2017-07-07 17:00 – Updated: 2024-08-05 17:11
    VLAI
    Summary
    A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing (applications that use the Wonderware ArchestrA Logger continue to run when the Wonderware ArchestrA Logger service is unavailable).
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Schneider Electric Wonderware ArchestrA Logger Affected: Schneider Electric Wonderware ArchestrA Logger
    Date Public
    2017-07-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T17:11:02.359Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "99488",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/99488"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
              },
              {
                "name": "1038836",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038836"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Schneider Electric Wonderware ArchestrA Logger",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Schneider Electric Wonderware ArchestrA Logger"
                }
              ]
            }
          ],
          "datePublic": "2017-07-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing (applications that use the Wonderware ArchestrA Logger continue to run when the Wonderware ArchestrA Logger service is unavailable)."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-476",
                  "description": "CWE-476",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-11T09:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "99488",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/99488"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
            },
            {
              "name": "1038836",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038836"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2017-9631",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Schneider Electric Wonderware ArchestrA Logger",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Schneider Electric Wonderware ArchestrA Logger"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing (applications that use the Wonderware ArchestrA Logger continue to run when the Wonderware ArchestrA Logger service is unavailable)."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-476"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "99488",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/99488"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
                },
                {
                  "name": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/",
                  "refsource": "MISC",
                  "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
                },
                {
                  "name": "1038836",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038836"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2017-9631",
        "datePublished": "2017-07-07T17:00:00.000Z",
        "dateReserved": "2017-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-05T17:11:02.359Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-9629 (GCVE-0-2017-9629)

    Vulnerability from nvd – Published: 2017-07-07 17:00 – Updated: 2024-08-05 17:11
    VLAI
    Summary
    A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The stack-based buffer overflow vulnerability has been identified, which may allow a remote attacker to execute arbitrary code in the context of a highly privileged account.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Schneider Electric Wonderware ArchestrA Logger Affected: Schneider Electric Wonderware ArchestrA Logger
    Date Public
    2017-07-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T17:11:02.286Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "99488",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/99488"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
              },
              {
                "name": "1038836",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038836"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Schneider Electric Wonderware ArchestrA Logger",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Schneider Electric Wonderware ArchestrA Logger"
                }
              ]
            }
          ],
          "datePublic": "2017-07-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The stack-based buffer overflow vulnerability has been identified, which may allow a remote attacker to execute arbitrary code in the context of a highly privileged account."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-11T09:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "99488",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/99488"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
            },
            {
              "name": "1038836",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038836"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2017-9629",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Schneider Electric Wonderware ArchestrA Logger",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Schneider Electric Wonderware ArchestrA Logger"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The stack-based buffer overflow vulnerability has been identified, which may allow a remote attacker to execute arbitrary code in the context of a highly privileged account."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-121"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "99488",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/99488"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
                },
                {
                  "name": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/",
                  "refsource": "MISC",
                  "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
                },
                {
                  "name": "1038836",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038836"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2017-9629",
        "datePublished": "2017-07-07T17:00:00.000Z",
        "dateReserved": "2017-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-05T17:11:02.286Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-9627 (GCVE-0-2017-9627)

    Vulnerability from nvd – Published: 2017-07-07 17:00 – Updated: 2024-08-05 17:11
    VLAI
    Summary
    An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Schneider Electric Wonderware ArchestrA Logger Affected: Schneider Electric Wonderware ArchestrA Logger
    Date Public
    2017-07-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T17:11:02.370Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "99488",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/99488"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
              },
              {
                "name": "1038836",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038836"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Schneider Electric Wonderware ArchestrA Logger",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Schneider Electric Wonderware ArchestrA Logger"
                }
              ]
            }
          ],
          "datePublic": "2017-07-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-11T09:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "99488",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/99488"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
            },
            {
              "name": "1038836",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038836"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2017-9627",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Schneider Electric Wonderware ArchestrA Logger",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Schneider Electric Wonderware ArchestrA Logger"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-400"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "99488",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/99488"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
                },
                {
                  "name": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/",
                  "refsource": "MISC",
                  "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
                },
                {
                  "name": "1038836",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038836"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2017-9627",
        "datePublished": "2017-07-07T17:00:00.000Z",
        "dateReserved": "2017-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-05T17:11:02.370Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-9629 (GCVE-0-2017-9629)

    Vulnerability from cvelistv5 – Published: 2017-07-07 17:00 – Updated: 2024-08-05 17:11
    VLAI
    Summary
    A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The stack-based buffer overflow vulnerability has been identified, which may allow a remote attacker to execute arbitrary code in the context of a highly privileged account.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Schneider Electric Wonderware ArchestrA Logger Affected: Schneider Electric Wonderware ArchestrA Logger
    Date Public
    2017-07-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T17:11:02.286Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "99488",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/99488"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
              },
              {
                "name": "1038836",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038836"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Schneider Electric Wonderware ArchestrA Logger",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Schneider Electric Wonderware ArchestrA Logger"
                }
              ]
            }
          ],
          "datePublic": "2017-07-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The stack-based buffer overflow vulnerability has been identified, which may allow a remote attacker to execute arbitrary code in the context of a highly privileged account."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-11T09:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "99488",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/99488"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
            },
            {
              "name": "1038836",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038836"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2017-9629",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Schneider Electric Wonderware ArchestrA Logger",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Schneider Electric Wonderware ArchestrA Logger"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The stack-based buffer overflow vulnerability has been identified, which may allow a remote attacker to execute arbitrary code in the context of a highly privileged account."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-121"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "99488",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/99488"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
                },
                {
                  "name": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/",
                  "refsource": "MISC",
                  "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
                },
                {
                  "name": "1038836",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038836"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2017-9629",
        "datePublished": "2017-07-07T17:00:00.000Z",
        "dateReserved": "2017-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-05T17:11:02.286Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-9627 (GCVE-0-2017-9627)

    Vulnerability from cvelistv5 – Published: 2017-07-07 17:00 – Updated: 2024-08-05 17:11
    VLAI
    Summary
    An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Schneider Electric Wonderware ArchestrA Logger Affected: Schneider Electric Wonderware ArchestrA Logger
    Date Public
    2017-07-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T17:11:02.370Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "99488",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/99488"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
              },
              {
                "name": "1038836",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038836"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Schneider Electric Wonderware ArchestrA Logger",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Schneider Electric Wonderware ArchestrA Logger"
                }
              ]
            }
          ],
          "datePublic": "2017-07-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-11T09:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "99488",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/99488"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
            },
            {
              "name": "1038836",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038836"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2017-9627",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Schneider Electric Wonderware ArchestrA Logger",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Schneider Electric Wonderware ArchestrA Logger"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-400"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "99488",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/99488"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
                },
                {
                  "name": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/",
                  "refsource": "MISC",
                  "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
                },
                {
                  "name": "1038836",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038836"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2017-9627",
        "datePublished": "2017-07-07T17:00:00.000Z",
        "dateReserved": "2017-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-05T17:11:02.370Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-9631 (GCVE-0-2017-9631)

    Vulnerability from cvelistv5 – Published: 2017-07-07 17:00 – Updated: 2024-08-05 17:11
    VLAI
    Summary
    A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing (applications that use the Wonderware ArchestrA Logger continue to run when the Wonderware ArchestrA Logger service is unavailable).
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Schneider Electric Wonderware ArchestrA Logger Affected: Schneider Electric Wonderware ArchestrA Logger
    Date Public
    2017-07-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T17:11:02.359Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "99488",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/99488"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
              },
              {
                "name": "1038836",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038836"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Schneider Electric Wonderware ArchestrA Logger",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Schneider Electric Wonderware ArchestrA Logger"
                }
              ]
            }
          ],
          "datePublic": "2017-07-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing (applications that use the Wonderware ArchestrA Logger continue to run when the Wonderware ArchestrA Logger service is unavailable)."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-476",
                  "description": "CWE-476",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-11T09:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "99488",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/99488"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
            },
            {
              "name": "1038836",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038836"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2017-9631",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Schneider Electric Wonderware ArchestrA Logger",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Schneider Electric Wonderware ArchestrA Logger"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing (applications that use the Wonderware ArchestrA Logger continue to run when the Wonderware ArchestrA Logger service is unavailable)."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-476"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "99488",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/99488"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04"
                },
                {
                  "name": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/",
                  "refsource": "MISC",
                  "url": "http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/"
                },
                {
                  "name": "1038836",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038836"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2017-9631",
        "datePublished": "2017-07-07T17:00:00.000Z",
        "dateReserved": "2017-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-05T17:11:02.359Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }