| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| The vulnerability of Schneider Electric InTouch Machine Edition and InduSoft Web Studio HMI/SCADA systems lies in their authentication procedures, which allow attackers to execute arbitrary commands and gain full control over the server. | 4 Dec 201700:00 | – | bdu_fstec | |
| Schneider Electric InduSoft Web Studio and InTouch Machine Edition Remote Code Execution Vulnerability | 22 Sep 201700:00 | – | cnvd | |
| CVE-2017-13997 | 2 Oct 201705:00 | – | cve | |
| CVE-2017-13997 | 2 Oct 201705:00 | – | cvelist | |
| EUVD-2017-5512 | 7 Oct 202500:30 | – | euvd | |
| Schneider Electric InduSoft Web Studio, InTouch Machine Edition | 21 Sep 201700:00 | – | ics | |
| CVE-2017-13997 | 3 Oct 201701:29 | – | nvd | |
| InduSoft Web Studio Authentication Bypass Vulnerability (Nov 2017) - Windows | 3 Nov 201700:00 | – | openvas | |
| InTouch Machine Edition Authentication Bypass Vulnerability (Nov 2017) - Windows | 20 Nov 201700:00 | – | openvas | |
| CVE-2017-13997 | 3 Oct 201701:29 | – | osv |
| Source | Link |
|---|---|
| nessus | www.nessus.org/u |
| nessus | www.nessus.org/u |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
| ics-cert | www.ics-cert.us-cert.gov/advisories/ICSA-17-264-01 |
#
# (C) Tenable Network Security, Inc.
#
include('compat.inc');
if (description)
{
script_id(104101);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2025/11/17");
script_cve_id("CVE-2017-13997");
script_xref(name:"ICSA", value:"17-264-01");
script_name(english:"Schneider Electric InduSoft Web Studio < 8.0 SP2 Patch 1 Unspecified Remote Command Execution (LFSEC00000121)");
script_set_attribute(attribute:"synopsis", value:
"The InduSoft Web Studio software running on the remote host is
affected by an information disclosure vulnerability.");
script_set_attribute(attribute:"description", value:
"According to its self-reported version, the Schneider Electric
InduSoft Web Studio software running on the remote host is prior to
8.0 SP2 Patch 1. It is, therefore, affected by an unspecified flaw
that allow a remote attacker to bypass authentication mechanisms and
execute arbitrary commands with elevated privileges.");
# https://sw.aveva.com/hubfs/pdf/security-bulletin/LFSec00000121.pdf
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e526f661");
# http://www.indusoft.com/Products-Downloads/Download-Library/Current-Release-Notes
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?83305c3d");
script_set_attribute(attribute:"see_also", value:"https://ics-cert.us-cert.gov/advisories/ICSA-17-264-01");
script_set_attribute(attribute:"solution", value:
"Upgrade to Schneider Electric InduSoft Web Studio 8.0 SP2 Patch 1 or
later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-13997");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/09/15");
script_set_attribute(attribute:"patch_publication_date", value:"2017/09/15");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/10/23");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/a:schneider_electric:indusoft_web_studio");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SCADA");
script_copyright(english:"This script is Copyright (C) 2017-2025 Tenable Network Security, Inc.");
script_dependencies("scada_app_indusoft_web_studio_detect.nbin");
script_require_keys("installed_sw/InduSoft Web Studio HTTP Server");
exit(0);
}
include("vcf.inc");
include("http.inc");
app_name = "InduSoft Web Studio HTTP Server";
port = get_http_port(default:80);
app_info = vcf::get_app_info(app:app_name, port:port, webapp:TRUE);
vcf::check_granularity(app_info:app_info, sig_segments:2);
constraints = [
{ "min_version" : "0", "fixed_version" : "8.0.2.1" }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation