Details of VAR-201707-1004

ID

VAR-201707-1004

CVE

CVE-2017-9631

TITLE

Schneider Electric Wonderware ArchestrA Logger In NULL Pointer dereference vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-005564

DESCRIPTION

A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attacker to crash the logger process, causing a denial of service for logging and log-viewing (applications that use the Wonderware ArchestrA Logger continue to run when the Wonderware ArchestrA Logger service is unavailable). Schneider Electric Wonderware ArchestrA Logger is a logger for Schneider Electric in Schneider Electric, France. There are security vulnerabilities in Schneider Electric Wonderware ArchestrA Logger 2017.426.2307.1 and earlier. Attackers can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions

Trust: 2.61

sources: NVD: CVE-2017-9631 // JVNDB: JVNDB-2017-005564 // CNVD: CNVD-2017-14896 // BID: 99488 // IVD: 876a1531-c236-4bce-8969-dfeb46aa8df8

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 876a1531-c236-4bce-8969-dfeb46aa8df8 // CNVD: CNVD-2017-14896

AFFECTED PRODUCTS

vendor:	schneider electric	model:	wonderware archestra logger	scope:	lte	version:	2017.426.2307.1	Trust: 1.8
vendor:	schneider electric	model:	wonderware archestra logger	scope:	eq	version:	2017.426.2307.1	Trust: 0.9
vendor:	schneider electric	model:	wonderware archestra logger	scope:	lte	version:	<=2017.426.2307.1	Trust: 0.6
vendor:	schneider electric	model:	wonderware archestra logger	scope:	ne	version:	2017.517.2328.1	Trust: 0.3
vendor:	wonderware archestra logger	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 876a1531-c236-4bce-8969-dfeb46aa8df8 // CNVD: CNVD-2017-14896 // BID: 99488 // JVNDB: JVNDB-2017-005564 // CNNVD: CNNVD-201707-331 // NVD: CVE-2017-9631

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-9631
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-9631
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2017-14896
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201707-331
value:	HIGH
Trust: 0.6
IVD:	876a1531-c236-4bce-8969-dfeb46aa8df8
value:	HIGH
Trust: 0.2

nvd@nist.gov:	CVE-2017-9631
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-14896
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	876a1531-c236-4bce-8969-dfeb46aa8df8
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

nvd@nist.gov:	CVE-2017-9631
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2017-9631
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 876a1531-c236-4bce-8969-dfeb46aa8df8 // CNVD: CNVD-2017-14896 // JVNDB: JVNDB-2017-005564 // CNNVD: CNNVD-201707-331 // NVD: CVE-2017-9631

PROBLEMTYPE DATA

problemtype:

CWE-476

Trust: 1.8

sources: JVNDB: JVNDB-2017-005564 // NVD: CVE-2017-9631

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201707-331

TYPE

Code problem

Trust: 0.8

sources: IVD: 876a1531-c236-4bce-8969-dfeb46aa8df8 // CNNVD: CNNVD-201707-331

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-005564

PATCH

title:	Wonderware Security Bulletin LFSEC00000116	url:	http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/	Trust: 0.8
title:	Patch for Schneider Electric Wonderware ArchestrA Logger Denial of Service Vulnerability (CNVD-2017-14896)	url:	https://www.cnvd.org.cn/patchInfo/show/98240	Trust: 0.6
title:	Schneider Electric Wonderware ArchestrA Logger Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=71561	Trust: 0.6

sources: CNVD: CNVD-2017-14896 // JVNDB: JVNDB-2017-005564 // CNNVD: CNNVD-201707-331

EXTERNAL IDS

db:	NVD	id:	CVE-2017-9631	Trust: 3.5
db:	ICS CERT	id:	ICSA-17-187-04	Trust: 2.7
db:	BID	id:	99488	Trust: 2.5
db:	SECTRACK	id:	1038836	Trust: 1.6
db:	CNVD	id:	CNVD-2017-14896	Trust: 0.8
db:	CNNVD	id:	CNNVD-201707-331	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-005564	Trust: 0.8
db:	IVD	id:	876A1531-C236-4BCE-8969-DFEB46AA8DF8	Trust: 0.2

sources: IVD: 876a1531-c236-4bce-8969-dfeb46aa8df8 // CNVD: CNVD-2017-14896 // BID: 99488 // JVNDB: JVNDB-2017-005564 // CNNVD: CNNVD-201707-331 // NVD: CVE-2017-9631

REFERENCES

url:	https://ics-cert.us-cert.gov/advisories/icsa-17-187-04	Trust: 2.7
url:	http://software.schneider-electric.com/pdf/security-bulletin/lfsec00000116/	Trust: 1.9
url:	http://www.securitytracker.com/id/1038836	Trust: 1.6
url:	http://www.securityfocus.com/bid/99488	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2017-9631	Trust: 1.4
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-9631	Trust: 0.8
url:	http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true	Trust: 0.3

sources: CNVD: CNVD-2017-14896 // BID: 99488 // JVNDB: JVNDB-2017-005564 // CNNVD: CNNVD-201707-331 // NVD: CVE-2017-9631

CREDITS

Andrey Zhukov of USSC

Trust: 0.3

sources: BID: 99488

SOURCES

db:	IVD	id:	876a1531-c236-4bce-8969-dfeb46aa8df8
db:	CNVD	id:	CNVD-2017-14896
db:	BID	id:	99488
db:	JVNDB	id:	JVNDB-2017-005564
db:	CNNVD	id:	CNNVD-201707-331
db:	NVD	id:	CVE-2017-9631

LAST UPDATE DATE

2025-04-20T23:30:54.871000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-14896	date:	2017-07-18T00:00:00
db:	BID	id:	99488	date:	2017-07-06T00:00:00
db:	JVNDB	id:	JVNDB-2017-005564	date:	2017-08-01T00:00:00
db:	CNNVD	id:	CNNVD-201707-331	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2017-9631	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	IVD	id:	876a1531-c236-4bce-8969-dfeb46aa8df8	date:	2017-07-18T00:00:00
db:	CNVD	id:	CNVD-2017-14896	date:	2017-07-18T00:00:00
db:	BID	id:	99488	date:	2017-07-06T00:00:00
db:	JVNDB	id:	JVNDB-2017-005564	date:	2017-08-01T00:00:00
db:	CNNVD	id:	CNNVD-201707-331	date:	2017-07-10T00:00:00
db:	NVD	id:	CVE-2017-9631	date:	2017-07-07T17:29:00.433