Details of VAR-202206-2412

ID

VAR-202206-2412

TITLE

Binary Vulnerability in IGSS (Interactive Graphical SCADA System)

Trust: 0.6

sources: CNVD: CNVD-2022-38333

DESCRIPTION

IGSS (Interactive Graphical SCADA System) is an industrial control SCADA system under Schneider, which is used in many fields such as electric power, sewage treatment, and manufacturing. IGSS (Interactive Graphical SCADA System) has a binary vulnerability that can be exploited by an attacker to cause a denial of service attack.

Trust: 0.6

sources: CNVD: CNVD-2022-38333

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2022-38333

AFFECTED PRODUCTS

vendor:

schneider

model:

electric igss

scope:

version:

15.0.0.22082

Trust: 0.6

sources: CNVD: CNVD-2022-38333

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2022-38333
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2022-38333
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2022-38333

PATCH

title:

Patch for Binary Vulnerability in IGSS (Interactive Graphical SCADA System)

url:

https://www.cnvd.org.cn/patchinfo/show/336131

Trust: 0.6

sources: CNVD: CNVD-2022-38333

EXTERNAL IDS

db:

CNVD

id:

CNVD-2022-38333

Trust: 0.6

sources: CNVD: CNVD-2022-38333

SOURCES

db:

CNVD

id:

CNVD-2022-38333

LAST UPDATE DATE

2023-09-28T23:03:25.859000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2022-38333

date:

2022-06-15T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2022-38333

date:

2022-06-15T00:00:00