How severe is CVE-2020-7505?

CVE-2020-7505 has a CVSS v3 score of 7.2 (HIGH).

CVE-2020-7505

Name: easergy_t300
Author: schneider-electric

7.2HIGH

A CWE-494 Download of Code Without Integrity Check vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker to inject data with dangerous content into the

Veröffentlicht: 6/16/2020Aktualisiert: 11/21/2024

Beschreibung

A CWE-494 Download of Code Without Integrity Check vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker to inject data with dangerous content into the firmware and execute arbitrary code on the system.

KI-AnalyseKI-gestützt

Betroffene Produkte

schneider-electriceasergy_t300_firmware

schneider-electriceasergy_t300

Referenzen

https://www.se.com/ww/en/download/document/SEVD-2020-161-04
Vendor Advisory
https://www.se.com/ww/en/download/document/SEVD-2020-161-04
Vendor Advisory