CVE-2017-9627
First published: Fri Jul 07 2017(Updated: )
An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The uncontrolled resource consumption vulnerability could allow an attacker to exhaust the memory resources of the machine, causing a denial of service.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Wonderware Archestra Logger | =2017.426.2307.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-9627?
CVE-2017-9627 is classified as a high severity vulnerability due to its potential to cause denial of service by exhausting machine memory resources.
How do I fix CVE-2017-9627?
To fix CVE-2017-9627, upgrade to the latest version of Schneider Electric Wonderware ArchestrA Logger that has addressed the vulnerability.
What type of vulnerability is CVE-2017-9627?
CVE-2017-9627 is an Uncontrolled Resource Consumption vulnerability.
What versions of Schneider Electric Wonderware ArchestrA Logger are affected by CVE-2017-9627?
Schneider Electric Wonderware ArchestrA Logger versions 2017.426.2307.1 and prior are affected by CVE-2017-9627.
How can CVE-2017-9627 be exploited by an attacker?
An attacker can exploit CVE-2017-9627 by sending specially crafted requests that lead to excessive resource consumption, resulting in a denial of service.
- agent/severity
- agent/weakness
- agent/references
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/description
- agent/author
- vendor/schneider-electric
- canonical/wonderware archestra logger
- version/wonderware archestra logger/2017.426.2307.1