How severe is CVE-2020-7557?

CVE-2020-7557 has a CVSS v3 score of 7.8 (HIGH).

CVE-2020-7557

Name: interactive_graphical_scada_system
Author: schneider-electric

7.8HIGH

A CWE-125 Out-of-bounds Read vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is importe

Publicado: 11/19/2020Actualizado: 11/21/2024

Descripción

A CWE-125 Out-of-bounds Read vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

Análisis IAImpulsado por IA

Productos Afectados

schneider-electricinteractive_graphical_scada_system

Referencias

https://www.se.com/ww/en/download/document/SEVD-2020-315-03/
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-096/
Third Party AdvisoryVDB Entry
https://www.se.com/ww/en/download/document/SEVD-2020-315-03/
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-096/
Third Party AdvisoryVDB Entry