Unrated severityNVD Advisory· Published Sep 16, 2020· Updated Aug 4, 2024

CVE-2020-7532

Description

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack x70 Security Administrator (V1.2.0 and prior) which could allow arbitrary code execution when an attacker builds a custom .SDB file containing a malicious serialized buffer.

Affected products

Schneider Electric/SCADAPack x70 Security Administratorllm-create
Range: <=1.2.0

Patches

Vulnerability mechanics

References

www.se.com/ww/en/download/document/SEVD-2020-252-01/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000