Schneider-electric

Interactive Graphical Scada System

43 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-7551

  • EPSS 0.68%
  • Veröffentlicht 19.11.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:37:21

A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

7.8

CVE-2020-7552

  • EPSS 0.68%
  • Veröffentlicht 19.11.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:37:22

A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

7.8

CVE-2020-7553

  • EPSS 0.66%
  • Veröffentlicht 19.11.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:37:22

A CWE-787 Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

7.8

CVE-2020-7554

  • EPSS 0.66%
  • Veröffentlicht 19.11.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:37:22

A CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is impo...

7.8

CVE-2020-7556

  • EPSS 0.66%
  • Veröffentlicht 19.11.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:37:22

A CWE-787 Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

7.8

CVE-2020-7557

  • EPSS 0.66%
  • Veröffentlicht 19.11.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:37:22

A CWE-125 Out-of-bounds Read vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

7.8

CVE-2020-7558

  • EPSS 0.66%
  • Veröffentlicht 19.11.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:37:22

A CWE-787 Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

7.8

CVE-2020-7479

  • EPSS 0.14%
  • Veröffentlicht 23.03.2020 20:15:12
  • Zuletzt bearbeitet 21.11.2024 05:37:13

A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a local user to execute processes that otherwise require escalation privileges when sending ...

7.5

CVE-2020-7478

  • EPSS 1.85%
  • Veröffentlicht 23.03.2020 20:15:12
  • Zuletzt bearbeitet 21.11.2024 05:37:13

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a remote unauthenticated attacker to read arbitrary files from the IGSS server PC on an unre...

7.8

CVE-2019-6827

  • EPSS 0.31%
  • Veröffentlicht 15.07.2019 21:15:10
  • Zuletzt bearbeitet 21.11.2024 04:47:13

A CWE-787: Out-of-bounds Write vulnerability exists in Interactive Graphical SCADA System (IGSS), Version 14 and prior, which could cause a software crash when data in the mdb database is manipulated.