2 matches found
CVE-2017-13997
A Missing Authentication for Critical Function issue was discovered in Schneider Electric InduSoft Web Studio v8.0 SP2 or prior, and InTouch Machine Edition v8.0 SP2 or prior. InduSoft Web Studio provides the capability for an HMI client to trigger script execution on the server for the purposes ...
CVE-2017-13997
The CVE-2017-13997 issue affects Schneider Electric InduSoft Web Studio (v8.0 SP2 or prior) and InTouch Machine Edition (v8.0 SP2 or prior). It is a Missing Authentication for Critical Function vulnerability (CWE-306) that could allow a remote attacker to bypass server authentication and trigger ...