Medium severity6.3NVD Advisory· Published Aug 25, 2017· Updated Jun 17, 2026
CVE-2017-9640
CVE-2017-9640
Description
A Path Traversal issue was discovered in Automated Logic Corporation (ALC) ALC WebCTRL, i-Vu, SiteScan Web prior to 6.5; ALC WebCTRL, SiteScan Web 6.1 and prior; ALC WebCTRL, i-Vu 6.0 and prior; ALC WebCTRL, i-Vu, SiteScan Web 5.5 and prior; and ALC WebCTRL, i-Vu, SiteScan Web 5.2 and prior. An authenticated attacker may be able to overwrite files that are used to execute code. This vulnerability does not affect version 6.5 of the software.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:automatedlogic:i-vu:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:automatedlogic:i-vu:*:*:*:*:*:*:*:*range: <=5.2
- (no CPE)range: <6.5
cpe:2.3:a:automatedlogic:sitescan_web:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:automatedlogic:sitescan_web:*:*:*:*:*:*:*:*range: <=5.2
- (no CPE)range: <6.5
- Range: <6.5
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/100452nvdThird Party AdvisoryVDB Entry
- ics-cert.us-cert.gov/advisories/ICSA-17-234-01nvdMitigationThird Party AdvisoryUS Government Resource
- www.exploit-db.com/exploits/42543/nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.