CVE-2020-12000
CVE-2020-12000
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 1.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
09 jun 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The affected product is vulnerable to the handling of serialized data. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data on the Ignition 8 Gateway (versions prior to 8.0.10) and Ignition 7 Gateway (versions prior to 7.9.14), allowing an attacker to obtain sensitive information.
Productos afectados
n/a · Ignition 8 Gateway¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →