High severity7.5NVD Advisory· Published Sep 26, 2017· Updated May 13, 2026

CVE-2017-9962

Description

Schneider Electric's ClearSCADA versions released prior to August 2017 are susceptible to a memory allocation vulnerability, whereby malformed requests can be sent to ClearSCADA client applications to cause unexpected behavior. Client applications affected include ViewX and the Server Icon.

Affected products

Schneider Electric SE/ClearSCADAv5
Range: 2017, 2015 R2, 2015 R1.1, 2015 R1 and all prior versions
Aveva/Clearscada
cpe:2.3:a:aveva:clearscada:*:*:*:*:*:*:*:*
Range: <=2010

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.schneider-electric.com/en/download/document/SEVD-2017-264-01/nvdMitigationVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000