RSS   Vulnerabilities for
'Ampla manufacturing execution system'
   RSS

2018-05-18
 
CVE-2017-9637

CWE-522
 

 
Schneider Electric Ampla MES 6.4 provides capability to interact with data from third party databases. When connectivity to those databases is configured to use a SQL user name and password, an attacker may be able to sniff details from the connection string. Schneider Electric recommends that users of Ampla MES versions 6.4 and prior should upgrade to Ampla MES version 6.5 as soon as possible.

 
 
CVE-2017-9635

CWE-326
 

 
Schneider Electric Ampla MES 6.4 provides capability to configure users and their privileges. When Ampla MES users are configured to use Simple Security, a weakness in the password hashing algorithm could be exploited to reverse the user's password. Schneider Electric recommends that users of Ampla MES versions 6.4 and prior should upgrade to Ampla MES version 6.5 as soon as possible.

 

 >>> Vendor: Schneider-electric 299 Products
Power manager
Software update
Citectfacilities
Citectscada
Clearscada 2005
Clearscada 2007
Clearscada 2009
Monitor pro
Opc factory server
Pl7 pro
Telemecanique driver pack
Unity pro
Vijeo citect
Citecthistorian
Citectscada reports
Vijeo historian
M340 ethernet module bmxnoe0100
M340 ethernet module bmxnoe0110
M340 ethernet module bmxp342020
M340 ethernet module bmxp342030
Premium ethernet module tsxety4103
Premium ethernet module tsxety5103
Premium ethernet module tsxp57163m
Premium ethernet module tsxp572634m
Premium ethernet module tsxp573634m
Premium ethernet module tsxp574634m
Premium ethernet module tsxp575634m
Premium ethernet module tsxp576634m
Quantum ethernet module 140cpu65150
Quantum ethernet module 140cpu65160
Quantum ethernet module 140cpu65260
Quantum ethernet module 140noe77100
Quantum ethernet module 140noe77101
Quantum ethernet module 140noe77111
Stb dio ethernet module stbnic2212
Stb dio ethernet module stbnip2212
Stb dio ethernet module stbnip2311
Modicon quantum plc
Wonderware historian
Wonderware intouch
Software update utility
Interactive graphical scada system
Accutech manager
Modicon m340
Modicon premium
Magelis xbt hmi
Micom s1 studio
Kerweb
Kerwin
Tburjr900
Tburjr900 firmware
Clearscada
Scada expert clearscada
Telvent sage 3030
Telvent sage 3030 firmware
Struxureware scada expert vijeo citect
Struxureware powerscada expert
Powerlogic scada
Floating license manager
Ofs test client tlxcdlfofs33
Ofs test client tlxcdltofs33
Ofs test client tlxcdluofs33
Ofs test client tlxcdstofs33
Ofs test client tlxcdsuofs33
Concept
Modbus serial driver
Modbuscommdtm sl
PL7
Powersuite
Sft2841
Somachine
Somove
Twidosuite
Unityloader
Opc factory server tlxcdlfofs
Opc factory server tlxcdltofs
Opc factory server tlxcdluofs
Opc factory server tlxcdstofs
Opc factory server tlxcdsuofs
Vampset
Modicon plc ethernet module
Proclima
Wonderware intouch access anywhere server
Tsxetg3000
Tsxetg3010
Tsxetg3021
Tsxetg3022
Etg3000 factorycast hmi gateway firmware
Somove lite
Device type manager
Indusoft web studio
Wonderware intouch 2014
Wonderware system platform 2014
Imt25 magnetic flow dtm
Bmxnoc0401
Bmxnoe0100
Bmxnoe0100h
Bmxnoe0110
Bmxnoe0110h
Bmxnor0200
See all Products for Vendor Schneider-electric


Copyright 2024, cxsecurity.com

 

Back to Top