5.3
CVE-2023-0595
- EPSS 0.07%
- Veröffentlicht 24.02.2023 11:15:10
- Zuletzt bearbeitet 21.11.2024 07:37:27
- Quelle cybersecurity@se.com
- Teams Watchlist Login
- Unerledigt Login
A CWE-117: Improper Output Neutralization for Logs vulnerability exists that could cause the misinterpretation of log files when malicious packets are sent to the Geo SCADA server's database web port (default 443). Affected products: EcoStruxure Geo SCADA Expert 2019, EcoStruxure Geo SCADA Expert 2020, EcoStruxure Geo SCADA Expert 2021(All Versions prior to October 2022), ClearSCADA (All Versions)
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7268.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7322.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7429.2
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7457.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7488.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7522.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7545.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7578.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7613.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7641.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7690.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7714.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7742.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7777.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7808.2
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7840.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7875.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7896.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7936.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.7980.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8015.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8108.2
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8122.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8155.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8172.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8197.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8220.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2019 Version81.8267.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7551.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7578.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7613.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7641.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7692.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7717.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7742.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7787.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7809.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7840.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7875.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7913.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7936.2
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.7980.2
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8017.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8108.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8122.2
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8155.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8181.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8197.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8221.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2020 Version83.8267.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8027.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8108.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8120.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8158.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8182.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8197.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8218.1
Schneider-electric ≫ Ecostruxure Geo Scada Expert 2021 Version84.8269.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.208 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
|
| cybersecurity@se.com | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
|
CWE-116 Improper Encoding or Escaping of Output
The product prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.
CWE-117 Improper Output Neutralization for Logs
The product does not neutralize or incorrectly neutralizes output that is written to logs.