Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
578
VMScore

CVE-2020-7547

Published: 01/12/2020 Updated: 03/09/2022
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 578
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Ecostruxure Energy Expert

Vulnerability Summary

A CWE-284: Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow a user the ability to perform actions via the web interface at a higher privilege level.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

schneider-electric ecostruxure energy expert 2.0

schneider-electric ecostruxure power monitoring expert 9.0

schneider-electric power manager 1.1

schneider-electric power manager 1.2

schneider-electric power manager 1.3

schneider-electric ecostruxure power monitoring expert 8.0

schneider-electric ecostruxure power monitoring expert 7.0

schneider-electric powerscada operation with advanced reporting and dashboards 9.0

schneider-electric powerscada expert with advanced reporting and dashboards 8.0

References

NVD-CWE-Otherhttps://www.se.com/ww/en/download/document/SEVD-2020-287-04/https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook