High severity7.8NVD Advisory· Published Sep 16, 2020· Updated Jun 17, 2026
CVE-2020-7528
CVE-2020-7528
Description
A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which could allow arbitrary code execution when an attacker builds a custom .PRJ file containing a malicious serialized buffer.
Affected products
3- SCADAPack/SCADAPack 7x Remote Connectdescription
- Range: <=V3.6.3.574
- Range: <=V3.6.3.574
Patches
Vulnerability mechanics
References
1- www.se.com/ww/en/download/document/SEVD-2020-252-01/nvdVendor Advisory
News mentions
0No linked articles in our index yet.