← volver
CVE-2020-7545

CVE-2020-7545

EPSS 2.0%CWE-284
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 2.0%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
01 dic 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A CWE-284:Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow for arbitrary code execution on the server when an authorized user access an affected webpage.
Productos afectados
n/a · EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.se.com/ww/en/download/document/SEVD-2020-287-04/