説明
A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when sending specially crafted requests over Modbus.
AI分析AIによる分析
影響を受ける製品
schneider-electricecostruxure_control_expert
参照
- https://www.se.com/ww/en/download/document/SEVD-2020-315-07PatchVendor Advisory
- https://www.se.com/ww/en/download/document/SEVD-2020-315-07PatchVendor Advisory