CVE-2017-14026

EUVD-2017-5541
In Ice Qube Thermal Management Center versions prior to version 4.13, the web application does not properly authenticate users which may allow an attacker to gain access to sensitive information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
icequbethermal_management_center_firmware
𝑥
< 4.13
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/105303
https://ics-cert.us-cert.gov/advisories/ICSA-18-249-01
http://www.securityfocus.com/bid/105303
https://ics-cert.us-cert.gov/advisories/ICSA-18-249-01