CVE-2020-7532
16.09.2020, 16:15
A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack x70 Security Administrator (V1.2.0 and prior) which could allow arbitrary code execution when an attacker builds a custom .SDB file containing a malicious serialized buffer.Enginsight
| Vendor | Product | Version |
|---|---|---|
| schneider-electric | scadapack_x70_security_administrator | 𝑥 ≤ 1.2.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration