A CWE-284:Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow for arbitrary code execution on the server when an authorized user access an affected webpage.
References
Link | Resource |
---|---|
https://www.se.com/ww/en/download/document/SEVD-2020-287-04/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: schneider
Published: 2020-12-01T14:44:10
Updated: 2020-12-01T14:44:10
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7545
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-12-01T15:15:12.297
Modified: 2022-09-03T03:46:43.307
Link: CVE-2020-7545
JSON object: View
Redhat Information
No data.
CWE