Lucene search
PRIOn knowledge basePRION:CVE-2017-5156HistoryApr 20, 2017 - 8:59 p.m.
Cross site request forgery (csrf)
2017-04-2020:59:00
PRIOn knowledge base
www.prio-n.com
8
A Cross-Site Request Forgery issue was discovered in Schneider Electric Wonderware InTouch Access Anywhere, version 11.5.2 and prior. The client request may be forged from a different site. This will allow an external site to access internal RDP systems on behalf of the currently logged in user.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wonderware_intouch_access_anywhere | le | 11.5.2 |
Related
cvelist
cvelist
CVE-2017-5156
2017-04-20 19:00:00
cve
cve
CVE-2017-5156
2017-04-20 20:59:00
nvd
nvd
CVE-2017-5156
2017-04-20 20:59:00
ics
ics
Schneider Electric Wonderware InTouch Access Anywhere
2017-03-30 12:00:00