How severe is CVE-2023-3001?

CVE-2023-3001 has a CVSS v3 score of 7.8 (HIGH).

CVE-2023-3001

Name: igss_dashboard
Author: schneider-electric

7.8HIGH

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution wh

发布于: 6/14/2023更新于: 11/21/2024

描述

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution when an attacker gets the user to open a malicious file.

AI分析AI驱动

受影响产品

schneider-electricigss_dashboard

参考资料

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-164-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-164-02.pdf
Vendor Advisory
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-164-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-164-02.pdf
Vendor Advisory