NVD

Vulnerability Change Records for CVE-2015-1014

Action	Type	Old Value	New Value
Added	CVSS V3		AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Added	CVSS V2		(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Added	CWE		CWE-427
Added	CPE Configuration		AND OR cpe:2.3:a:schneider-electric:opc_factory_server:3.5::::::: OR cpe:2.3:a:schneider-electric:citectscada:7.20:::::::* cpe:2.3:a:schneider-electric:citectscada:7.30:::::::* cpe:2.3:a:schneider-electric:citectscada:7.40:::::::* cpe:2.3:a:schneider-electric:scada_expert_vijeo_citect:7.20:::::::* cpe:2.3:a:schneider-electric:scada_expert_vijeo_citect:7.30:::::::* cpe:2.3:a:schneider-electric:scada_expert_vijeo_citect:7.40:::::::*
Changed	Reference Type	https://ics-cert.us-cert.gov/advisories/ICSA-15-141-01 No Types Assigned	https://ics-cert.us-cert.gov/advisories/ICSA-15-141-01 Mitigation, Third Party Advisory, US Government Resource
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism