ICSA-17-024-01
·
Published 2017-01-24
·
View on CISA ICS-CERT ↗
Schneider Electric Wonderware Historian
CVSS 7.3
HIGH
Risk Summary
ATTENTION: Remotely exploitable/Low skill level to exploit
CVEs (1)
Remediations
- Identify where the logins are used. Some likely places for the logins to have been used are: Wonderware Historian Client, Wonderware InTouch and Application Object scripts, Wonderware Information Server configuration, and Custom applications not supplied by Schneider Electric that interact with Historian data.
- Logins that are not used should be disabled from the SQL Server Management Studio.
- For logins that are still in use, the passwords should be changed from the default.
- For an increased level of security, Schneider Electric and Microsoft further advise that connectivity to SQL Server be accomplished with Windows Integrated Security as opposed to using native SQL logins.
Affected Vendors
Schneider Electric Software, LLC
Affected Products (1)
Schneider Electric Software, LLC
·
Wonderware Historian 2014 R2
< SP1 P01
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more