CVE-2020-7560

HIGH

8.6

CVSS Severity Score

EPSS Score0.1200%

EPSS Percentile29.90th

Published2020年12月11日

Last Modified2024年11月21日

Vulnerability Description

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions), that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control Expert software.

Affected Platforms (CPE)

📦

Schneider Electric

Ecostruxure Control Expert

All versions

📦

Schneider Electric

Unity Pro

All versions

References & Advisories

🔗 https://www.se.com/ww/en/download/document/SEVD-2020-343-01/

Vulnerability Description

Affected Platforms (CPE)

Ecostruxure Control Expert

Unity Pro

References & Advisories

相关漏洞威胁