High severity8.8NVD Advisory· Published May 6, 2017· Updated May 13, 2026

CVE-2017-6031

Description

A Header Injection issue was discovered in Certec EDV GmbH atvise scada prior to Version 3.0. An "improper neutralization of HTTP headers for scripting syntax" issue has been identified, which may allow remote code execution.

Affected products

Certec Edv Gmbh/Atvise Scada
cpe:2.3:a:certec_edv_gmbh:atvise_scada:*:*:*:*:*:*:*:*
Range: <=2.5.10

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/97479nvdThird Party AdvisoryVDB Entry
ics-cert.us-cert.gov/advisories/ICSA-17-096-01AnvdThird Party AdvisoryUS Government Resource

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000