Lucene search
China National Vulnerability DatabaseCNVD-2023-29375HistoryMar 20, 2023 - 12:00 a.m.
Schneider Electric IGSS Data Server Access Control Error Vulnerability (CNVD-2023-29375)
2023-03-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
schneider electric
igss data server
access control error
vulnerability
remote code execution
scada system
interactive graphical
report directory
EPSS
0.004
Percentile
74.0%
Schneider Electric IGSS Data Server is a data server for the interactive graphical Scada system from Schneider Electric (France). An access control error vulnerability exists in Schneider Electric IGSS Data Server, which could be exploited by an attacker to create malicious report files in the IGSS project report directory, leading to remote code execution.
Related
nvd
nvd
CVE-2023-27980
2023-03-21 06:15:13
zdi
zdi
cve
cve
CVE-2023-27980
2023-03-21 06:15:13
prion
prion
Authentication flaw
2023-03-21 06:15:00
cvelist
cvelist
CVE-2023-27980
2023-03-21 00:00:00
ics
ics
Schneider Electric IGSS
2023-03-23 12:00:00