CVE-2017-9627

EPSS 4.1%CWE-400

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 4.1%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

07 Jul 2017Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service.

Affected products

n/a · Schneider Electric Wonderware ArchestrA Logger

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://ics-cert.us-cert.gov/advisories/ICSA-17-187-04 http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/http://www.securityfocus.com/bid/99488 http://www.securitytracker.com/id/1038836