← Back

CVE-2016-8374

nvd nist
Published: Feb 13, 2017Modified: May 13, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels, all versions, Magelis GTU Universal Panel, all versions, Magelis STO5xx and STU Small panels, all versions, Magelis XBT GH Advanced Hand-held Panels, all versions, Magelis XBT GK Advanced Touchscreen Panels with Keyboard, all versions, Magelis XBT GT Advanced Touchscreen Panels, all versions, and Magelis XBT GTW Advanced Open Touchscreen Panels (Windows XPe). An attacker may be able to disrupt a targeted web server, resulting in a denial of service because of UNCONTROLLED RESOURCE CONSUMPTION.

Affected (8)

Schneider Electric
8 products
Magelis Gtu Universal Panel Firmware
Magelis Gto Advanced Optimum Panel Firmware
Magelis Sto5 Small Panel Firmware
Magelis Stu Small Panel Firmware
Magelis Xbt Gh Advanced Hand Held Panel Firmware
Magelis Xbt Gk Advanced Touchscreen Panel With Keyboard Firmware
Magelis Xbt Gt Advanced Touchscreen Panel Firmware
Magelis Xbt Gtw Advanced Open Touchscreen Panel Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Gtu Universal Panel Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Gtu Universal Panel
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Gto Advanced Optimum Panel Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Gto Advanced Optimum Panel
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Sto5 Small Panel Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Sto5 Small Panel
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Stu Small Panel Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Stu Small Panel
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Xbt Gh Advanced Hand Held Panel Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Xbt Gh Advanced Hand Held Panel
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Xbt Gk Advanced Touchscreen Panel With Keyboard Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Xbt Gk Advanced Touchscreen Panel With Keyboard
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Xbt Gt Advanced Touchscreen Panel Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Xbt Gt Advanced Touchscreen Panel
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Magelis Xbt Gtw Advanced Open Touchscreen Panel Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Magelis Xbt Gtw Advanced Open Touchscreen Panel
All versions

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (4)

Source: ics-cert@hq.dhs.gov
Third Party AdvisoryVDB Entry
Source: ics-cert@hq.dhs.gov
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource

Timeline

No history available yet.