A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions), that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control Expert software.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:HSchneider Electric Ecostruxure Control Expert
APPSchneider-Electricwszystkie wersjeSchneider Electric Unity Pro
APPSchneider-Electricwszystkie wersje
Powiązane podatności
A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists that could cause unaut...
A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted inp...
Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert (all versions prior to V1...
A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists in PLC Simulator on ...
A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), ...