CVE-2011-4053

2022-10-0316:15:14

[email protected]

web.nvd.nist.gov

cve-2011-4053

vulnerability

7-technologies

igss

scada

privilege escalation

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.9%

JSON

Untrusted search path vulnerability in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) before 9.0.0.11291 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Affected configurations

NVD

Node

7tigssRange≤9.0.0.11200

7tigssMatch2.0

7tigssMatch3.0

7tigssMatch4.1

7tigssMatch5.0

7tigssMatch5.1

7tigssMatch6

7tigssMatch7

7tigssMatch8

7tigssMatch9

7tigssMatch9.0.0.11129

CPENameOperatorVersion
7t:igss7t igssle9.0.0.11200
7t:igss7t igsseq2.0
7t:igss7t igsseq3.0
7t:igss7t igsseq4.1
7t:igss7t igsseq5.0
7t:igss7t igsseq5.1
7t:igss7t igsseq6
7t:igss7t igsseq7
7t:igss7t igsseq8
7t:igss7t igsseq9

CPE	Name	Operator	Version
7t:igss	7t igss	le	9.0.0.11200
7t:igss	7t igss	eq	2.0
7t:igss	7t igss	eq	3.0
7t:igss	7t igss	eq	4.1
7t:igss	7t igss	eq	5.0
7t:igss	7t igss	eq	5.1
7t:igss	7t igss	eq	6
7t:igss	7t igss	eq	7
7t:igss	7t igss	eq	8
7t:igss	7t igss	eq	9