CVE-2020-7532
7.8HIGHA CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack x70 Security Administrator (V1.2.0 and prior) which could allow arbitrary code execution when an attacker builds a custom
Veröffentlicht: 9/16/2020Aktualisiert: 11/21/2024
Beschreibung
A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack x70 Security Administrator (V1.2.0 and prior) which could allow arbitrary code execution when an attacker builds a custom .SDB file containing a malicious serialized buffer.
KI-AnalyseKI-gestützt
Betroffene Produkte
schneider-electricscadapack_x70_security_administrator
Referenzen
- https://www.se.com/ww/en/download/document/SEVD-2020-252-01/Vendor Advisory
- https://www.se.com/ww/en/download/document/SEVD-2020-252-01/Vendor Advisory