cvedb.io
CVE-2017-9635
LOW · CVSS 3.9
EPSS exploitation probability: 0%
Published 2018-05-18T13:29:00.223 · Last modified 2026-06-17T01:28:37.830

Summary

Schneider Electric Ampla MES 6.4 provides capability to configure users and their privileges. When Ampla MES users are configured to use Simple Security, a weakness in the password hashing algorithm could be exploited to reverse the user's password. Schneider Electric recommends that users of Ampla MES versions 6.4 and prior should upgrade to Ampla MES version 6.5 as soon as possible.

Affected products

schneider-electric — ampla_manufacturing_execution_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when schneider-electric ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.