Rexroth Bosch BLADEcontrol-WebVIS Vulnerabilities

🗓️ 08 Apr 2016 06:00:00Reported by Industrial Control Systems Cyber Emergency Response TeamType

ics🔗 www.cisa.gov👁 52 Views

Rexroth Bosch BLADEcontrol-WebVIS Vulnerabilities. SQL injection and cross-site scripting vulnerabilities identified by Maxim Rupp. New version of BLADEcontrol-WebVIS available to mitigate these issues. Remotely exploitable

Reporter	Title	Published	Views	Family All 8
CNVD	Rexroth Bosch BLADEcontrol-WebVIS SQL Injection Vulnerability	6 Jul 201600:00	–	cnvd
CVE	CVE-2016-4507	6 Jul 201614:00	–	cve
Cvelist	CVE-2016-4507	6 Jul 201614:00	–	cvelist
EUVD	EUVD-2016-5494	7 Oct 202500:30	–	euvd
NVD	CVE-2016-4507	6 Jul 201614:59	–	nvd
OSV	CVE-2016-4507	6 Jul 201614:59	–	osv
Prion	Sql injection	6 Jul 201614:59	–	prion
Positive Technologies	PT-2016-5989 · Bosch Rexroth · Bladecontrol-Webvis	6 Jul 201600:00	–	ptsecurity

Source	Link
raw	www.raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2016/icsa-16-187-01.json
cisa	www.cisa.gov/news-events/ics-advisories/icsa-16-187-01
cisa	www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01
cisa	www.cisa.gov/resources-tools/resources/ics-recommended-practices
cisa	www.cisa.gov/topics/industrial-control-systems
us-cert	www.us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf
cisa	www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf
cisa	www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B
cisa	www.cisa.gov/uscert/sites/default/files/publications/emailscams0905.pdf
cisa	www.cisa.gov/uscert/ncas/tips/ST04-014

08 Apr 2016 06:00Current

7High risk

Vulners AI Score7

CVSS 25.5

CVSS 3.16.4

EPSS0.00163