CVE-2017-6043
published 2017-06-21CVE-2017-6043: A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11.2.26. The client does not properly validate the input or limit the amount…
PriorityP338high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
EPSS
1.69%
74.2th percentile
A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11.2.26. The client does not properly validate the input or limit the amount of resources that are utilized by an attacker, which can be used to consume more resources than are available.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| trihedral | vtscada | <= 11.2.23 | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Trihedral Engineering Limited VTScada
cisa_ics·2017-10-31
Trihedral Engineering Limited VTScada
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Trihedral Engineering Limited VTScada
Last RevisedOctober 31, 2017
Alert CodeICSA-17-164-01
## CVSS v3 7.5
ATTENTION: Remotely exploitable/low skill level to exploit.
Vendor: Trihedral Engineering Limited
Equipment: VTScada
Vulnerability: Resource Consumption, Cross-Site Scripting, Information Exposure
## AFFECTED PRODUCTS
The following versions of VTScada, an HMI SCADA software, are affected:
- VTScada Versions prior to 11.2.26
## IMPACT
Successful exploitation of these vulnerabilities could result in uncontrolled resource consumption, arbitrary code execution, or infor
GHSA
GHSA-f9xv-m3hp-2jq7: A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11
ghsa_unreviewed·2022-05-13
CVE-2017-6043 [HIGH] CWE-400 GHSA-f9xv-m3hp-2jq7: A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11
A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11.2.26. The client does not properly validate the input or limit the amount of resources that are utilized by an attacker, which can be used to consume more resources than are available.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2017-06-21
Published