CVE-2022-41666
7.0HIGHA CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that allows adversaries with local user privileges to load a malicious DLL which could lead to execution of malicious c
게시됨: 11/4/2022업데이트됨: 11/21/2024
설명
A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that allows adversaries with local user privileges to load a malicious DLL which could lead to execution of malicious code. Affected Products: EcoStruxure Operator Terminal Expert(V3.3 Hotfix 1 or prior), Pro-face BLUE(V3.3 Hotfix1 or prior).
AI 분석AI 기반
영향받는 제품
schneider-electricecostruxure_operator_terminal_expert
schneider-electricecostruxure_operator_terminal_expert
3.3
schneider-electricpro-face_blue
schneider-electricpro-face_blue
3.3
참조
- https://www.se.com/ww/en/download/document/SEVD-2022-284-01/Vendor Advisory
- https://www.se.com/ww/en/download/document/SEVD-2022-284-01/Vendor Advisory