Details of VAR-201709-1097

ID

VAR-201709-1097

CVE

CVE-2017-7969

TITLE

Schneider Electric PowerSCADA Anywhere/Citect Anywhere Cross-Site Request Forgery Vulnerability

Trust: 0.8

sources: IVD: 7455cbdf-acd0-4108-bba4-fb9f68930c62 // CNVD: CNVD-2017-22845

DESCRIPTION

A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack. Schneider Electric's PowerSCADA Anywhere and Citect Anywhere Contains a cross-site request forgery vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. PowerSCADA Anywhere is SCADA and power monitoring software. Citect is an industrial automation operation and monitoring software. Schneider Electric PowerSCADA Anywhere and Citect Anywhere are prone to the following security vulnerabilities: 1. A cross-site request-forgery vulnerability 2. An information-disclosure vulnerability 3. Multiple security-bypass vulnerabilities Exploiting these issues could allow an attacker to obtain sensitive information, bypass certain security restrictions, perform unauthorized actions, or gain access to the affected system. Following products and versions are vulnerable: PowerSCADA Anywhere 1.0 redistributed with PowerSCADA Expert 8.1 and PowerSCADA Expert 8.2 Citect Anywhere 1.0

Trust: 2.61

sources: NVD: CVE-2017-7969 // JVNDB: JVNDB-2017-008372 // CNVD: CNVD-2017-22845 // BID: 99913 // IVD: 7455cbdf-acd0-4108-bba4-fb9f68930c62

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 7455cbdf-acd0-4108-bba4-fb9f68930c62 // CNVD: CNVD-2017-22845

AFFECTED PRODUCTS

vendor:	schneider electric	model:	powerscada anywhere	scope:	eq	version:	1.0	Trust: 2.7
vendor:	schneider electric	model:	citect anywhere	scope:	eq	version:	1.0	Trust: 2.7
vendor:	schneider	model:	electric citect anywhere	scope:	eq	version:	1.0	Trust: 0.6
vendor:	schneider	model:	electric powerscada anywhere	scope:	eq	version:	1.0	Trust: 0.6
vendor:	schneider electric	model:	powerscada expert	scope:	eq	version:	8.2	Trust: 0.3
vendor:	schneider electric	model:	powerscada expert	scope:	eq	version:	8.1	Trust: 0.3
vendor:	powerscada anywhere	model:	-	scope:	eq	version:	1.0	Trust: 0.2
vendor:	citect anywhere	model:	-	scope:	eq	version:	1.0	Trust: 0.2

sources: IVD: 7455cbdf-acd0-4108-bba4-fb9f68930c62 // CNVD: CNVD-2017-22845 // BID: 99913 // JVNDB: JVNDB-2017-008372 // CNNVD: CNNVD-201704-899 // NVD: CVE-2017-7969

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-7969
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-7969
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2017-22845
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201704-899
value:	MEDIUM
Trust: 0.6
IVD:	7455cbdf-acd0-4108-bba4-fb9f68930c62
value:	MEDIUM
Trust: 0.2

nvd@nist.gov:	CVE-2017-7969
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-22845
severity:	HIGH
baseScore:	8.8
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	9.2
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	7455cbdf-acd0-4108-bba4-fb9f68930c62
severity:	HIGH
baseScore:	8.8
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	9.2
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

nvd@nist.gov:	CVE-2017-7969
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: IVD: 7455cbdf-acd0-4108-bba4-fb9f68930c62 // CNVD: CNVD-2017-22845 // JVNDB: JVNDB-2017-008372 // CNNVD: CNNVD-201704-899 // NVD: CVE-2017-7969

PROBLEMTYPE DATA

problemtype:

CWE-352

Trust: 1.8

sources: JVNDB: JVNDB-2017-008372 // NVD: CVE-2017-7969

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-899

TYPE

cross-site request forgery

Trust: 0.6

sources: CNNVD: CNNVD-201704-899

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-008372

PATCH

title:	SEVD-2017-173-01	url:	https://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/	Trust: 0.8
title:	Security Notification - Citect Anywhere	url:	https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere	Trust: 0.8
title:	Patch for Schneider Electric PowerSCADA Anywhere/Citect Anywhere Cross-Site Request Forgery Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/100823	Trust: 0.6

sources: CNVD: CNVD-2017-22845 // JVNDB: JVNDB-2017-008372

EXTERNAL IDS

db:	NVD	id:	CVE-2017-7969	Trust: 3.5
db:	SCHNEIDER	id:	SEVD-2017-173-01	Trust: 1.9
db:	BID	id:	99913	Trust: 1.9
db:	ICS CERT	id:	ICSA-17-201-01	Trust: 1.5
db:	CNVD	id:	CNVD-2017-22845	Trust: 0.8
db:	CNNVD	id:	CNNVD-201704-899	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-008372	Trust: 0.8
db:	NSFOCUS	id:	37196	Trust: 0.6
db:	IVD	id:	7455CBDF-ACD0-4108-BBA4-FB9F68930C62	Trust: 0.2

sources: IVD: 7455cbdf-acd0-4108-bba4-fb9f68930c62 // CNVD: CNVD-2017-22845 // BID: 99913 // JVNDB: JVNDB-2017-008372 // CNNVD: CNNVD-201704-899 // NVD: CVE-2017-7969

REFERENCES

url:	http://www.schneider-electric.com/en/download/document/sevd-2017-173-01/	Trust: 1.9
url:	http://www.securityfocus.com/bid/99913	Trust: 1.6
url:	https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere	Trust: 1.6
url:	https://ics-cert.us-cert.gov/advisories/icsa-17-201-01	Trust: 1.5
url:	https://nvd.nist.gov/vuln/detail/cve-2017-7969	Trust: 1.4
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7969	Trust: 0.8
url:	http://www.nsfocus.net/vulndb/37196	Trust: 0.6
url:	http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true	Trust: 0.3

sources: CNVD: CNVD-2017-22845 // BID: 99913 // JVNDB: JVNDB-2017-008372 // CNNVD: CNNVD-201704-899 // NVD: CVE-2017-7969

CREDITS

Schneider Electric

Trust: 0.3

sources: BID: 99913

SOURCES

db:	IVD	id:	7455cbdf-acd0-4108-bba4-fb9f68930c62
db:	CNVD	id:	CNVD-2017-22845
db:	BID	id:	99913
db:	JVNDB	id:	JVNDB-2017-008372
db:	CNNVD	id:	CNNVD-201704-899
db:	NVD	id:	CVE-2017-7969

LAST UPDATE DATE

2025-04-20T23:22:11.138000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-22845	date:	2017-09-22T00:00:00
db:	BID	id:	99913	date:	2017-07-20T00:00:00
db:	JVNDB	id:	JVNDB-2017-008372	date:	2017-10-17T00:00:00
db:	CNNVD	id:	CNNVD-201704-899	date:	2017-09-08T00:00:00
db:	NVD	id:	CVE-2017-7969	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	IVD	id:	7455cbdf-acd0-4108-bba4-fb9f68930c62	date:	2017-08-25T00:00:00
db:	CNVD	id:	CNVD-2017-22845	date:	2017-08-25T00:00:00
db:	BID	id:	99913	date:	2017-07-20T00:00:00
db:	JVNDB	id:	JVNDB-2017-008372	date:	2017-10-17T00:00:00
db:	CNNVD	id:	CNNVD-201704-899	date:	2017-04-20T00:00:00
db:	NVD	id:	CVE-2017-7969	date:	2017-09-26T01:29:03.460