How severe is CVE-2020-7532?

CVE-2020-7532 has a CVSS v3 score of 7.8 (HIGH).

CVE-2020-7532

Name: scadapack_x70_security_administrator
Author: schneider-electric

7.8HIGH

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack x70 Security Administrator (V1.2.0 and prior) which could allow arbitrary code execution when an attacker builds a custom

Опубликовано: 9/16/2020Обновлено: 11/21/2024

Описание

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack x70 Security Administrator (V1.2.0 and prior) which could allow arbitrary code execution when an attacker builds a custom .SDB file containing a malicious serialized buffer.

ИИ-АнализНа базе ИИ

Затронутые продукты

schneider-electricscadapack_x70_security_administrator

Ссылки

https://www.se.com/ww/en/download/document/SEVD-2020-252-01/
Vendor Advisory
https://www.se.com/ww/en/download/document/SEVD-2020-252-01/
Vendor Advisory