CVE-2017-6031

Summary

A Header Injection issue was discovered in Certec EDV GmbH atvise scada prior to Version 3.0. An "improper neutralization of HTTP headers for scripting syntax" issue has been identified, which may allow remote code execution.

Affected Software

VendorProductVersion RangeStatus
n/aCertec EDV GmbH atvise scadaCertec EDV GmbH atvise scadaaffected

Weaknesses

  • CWE-644: CWE-644

ADP Enrichment

CVE Program Container

Additional References

References