CVE-2017-9966
N/A
N/A
Summary
A privilege escalation vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. By replacing certain files, an unauthorized user can obtain system privileges and the inserted code would execute at an elevated privilege level.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Schneider Electric SE | Pelco VideoXpert Enterprise | Versions 2.0 and prior | affected |
Weaknesses
- Privilege Escalation
ADP Enrichment
CVE Program Container
Additional References
- https://ics-cert.us-cert.gov/advisories/ICSA-17-355-02
- https://www.schneider-electric.com/en/download/document/SEVD-2017-339-01/
- http://www.securityfocus.com/bid/102338
References
- https://ics-cert.us-cert.gov/advisories/ICSA-17-355-02
- https://www.schneider-electric.com/en/download/document/SEVD-2017-339-01/
- http://www.securityfocus.com/bid/102338
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.