How severe is CVE-2023-3001?

CVE-2023-3001 has a CVSS v3 score of 7.8 (HIGH).

CVE-2023-3001

Name: igss_dashboard
Author: schneider-electric

7.8HIGH

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution wh

Publicado: 6/14/2023Actualizado: 11/21/2024

Descripción

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution when an attacker gets the user to open a malicious file.

Análisis IAImpulsado por IA

Productos Afectados

schneider-electricigss_dashboard

Referencias

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-164-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-164-02.pdf
Vendor Advisory
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-164-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-164-02.pdf
Vendor Advisory