Unrated severityNVD Advisory· Published Mar 28, 2022· Updated Aug 4, 2024
CVE-2019-6834
CVE-2019-6834
Description
A CWE-502: Deserialization of Untrusted Data vulnerability exists which could allow an attacker to execute arbitrary code on the targeted system with SYSTEM privileges when placing a malicious user to be authenticated for this vulnerability to be successfully exploited. Affected Product: Schneider Electric Software Update (SESU) SUT Service component (V2.1.1 to V2.3.0)
Affected products
22.1.1 to 2.3.0+ 1 more
- (no CPE)range: 2.1.1 to 2.3.0
- (no CPE)range: V2.1.1
Patches
Vulnerability mechanics
References
1- www.se.com/ww/en/download/document/SEVD-2019-225-06/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.