How severe is CVE-2023-3001?

CVE-2023-3001 has a CVSS v3 score of 7.8 (HIGH).

CVE-2023-3001

Name: igss_dashboard
Author: schneider-electric

7.8HIGH

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution wh

Published: 6/14/2023Updated: 11/21/2024

Description

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution when an attacker gets the user to open a malicious file.

AI AnalysisPowered by AI

Affected Products

schneider-electricigss_dashboard

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-164-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-164-02.pdf
Vendor Advisory
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-164-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-164-02.pdf
Vendor Advisory