CVE-2020-10640

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0090%

EPSS Percentile30.94th

PublishedFeb 24, 2022

Last ModifiedNov 21, 2024

Vulnerability Description

Emerson OpenEnterprise versions through 3.3.4 may allow an attacker to run an arbitrary commands with system privileges or perform remote code execution via a specific communication service.

Affected Platforms (CPE)

📦

Emerson

Openenterprise Scada Server

<= 3.3.4

References & Advisories

🔗 https://www.cisa.gov/uscert/ics/advisories/icsa-20-140-02

Related Vulnerabilities

CVE-2020-69709.8

A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA Server 2.83 (if Modbus or ROC Interfaces have been installe...

CVE-2020-696610.0

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ver...

CVE-2020-696110.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...

CVE-2020-696210.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...