NVD

Id
84677  
Name
CVE-2017-5160  
Description
An Inadequate Encryption Strength issue was discovered in Schneider Electric Wonderware InTouch Access Anywhere, version 11.5.2 and prior. The software will connect via Transport Layer Security without verifying the peer's SSL certificate properly.  
Reject
 
CVSS Version
2  
CVSS Score
3.5  
Severity
Low  
CVSS Base Score
3.5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:P/I:N/A:N)  
Pub Date
2017-04-27  
Published
2017-04-20  
Modified Date
2017-04-26  
Seq
2017-5160  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
417372 84677 CVE-2017-2450 97137  View
417373 84677 CVE-2017-2450 https://support.apple.com/HT207601  View
417374 84677 CVE-2017-2450 https://support.apple.com/HT207602  View
417375 84677 CVE-2017-2450 https://support.apple.com/HT207615  View
417376 84677 CVE-2017-2450 https://support.apple.com/HT207617  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
66934 JVNDB-2017-003246 Schneider Electric Wonderware InTouch Access Anywhere における暗号強度に関する脆弱性 Schneider Electric Wonderware InTouch Access Anywhere には、暗号強度に関する脆弱性が存在します。 CVE-2017-5160 0 CVE-2017-5160 84677 3.5 5.3 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-003246.html 2017-03-27 2017-05-22 View