A CWE-284: Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow a user the ability to perform actions via the web interface at a higher privilege level.
References
Link | Resource |
---|---|
https://www.se.com/ww/en/download/document/SEVD-2020-287-04/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: schneider
Published: 2020-12-01T14:44:52
Updated: 2020-12-01T14:44:52
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7547
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-12-01T15:15:12.657
Modified: 2022-09-03T03:43:47.213
Link: CVE-2020-7547
JSON object: View
Redhat Information
No data.
CWE