CVE-2014-5399

2014-08-2801:00:00

icscert

www.cve.org

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.4%

JSON

SQL injection vulnerability in Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 through 5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

References

www.securityfocus.com/bid/69416

ics-cert.us-cert.gov/advisories/ICSA-14-238-02