cvedb.io
CVE-2017-5158
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2017-04-20T20:59:00.440 · Last modified 2026-06-17T01:20:04.070

Summary

An Information Exposure issue was discovered in Schneider Electric Wonderware InTouch Access Anywhere, version 11.5.2 and prior. Credentials may be exposed to external systems via specific URL parameters, as arbitrary destination addresses may be specified.

Affected products

aveva — wonderware_intouch_access_anywhere

Does this affect you?

Add your gear to cvedb and we'll alert you only when aveva ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.