← volver
CVE-2020-10611

CVE-2020-10611

EPSS 5.2%CWE-843
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 5.2%KEV nãoPoC Patch
Ciclo de vida
15 abr 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type confusion condition. Authentication is not required to exploit this vulnerability. Only applicable to installations using DNP3 Data Sets.
Productos afectados
n/a · Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.us-cert.gov/ics/advisories/icsa-20-105-03https://www.zerodayinitiative.com/advisories/ZDI-20-549/