CVE-2020-28211
7.8HIGHA CWE-863: Incorrect Authorization vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause bypass of authentication when overwriting memory
Publicado: 11/19/2020Actualizado: 11/21/2024
Descripción
A CWE-863: Incorrect Authorization vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause bypass of authentication when overwriting memory using a debugger.
Análisis IAImpulsado por IA
Productos Afectados
schneider-electricecostruxure_control_expert
Referencias
- https://www.se.com/ww/en/download/document/SEVD-2020-315-07PatchVendor Advisory
- https://www.se.com/ww/en/download/document/SEVD-2020-315-07PatchVendor Advisory