CVE-2023-27978

🗓️ 21 Mar 2023 00:00:00Reported by schneiderType

CWE-502: Deserialization of Untrusted Data vulnerability in IGSS Dashboard module for potential remote code executio

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability of the indicator panels of the SCADA system’s data server and the monitoring tools such as Custom Reports and IGSS Dashboard allows a intruder to execute any arbitrary code in the target system.	23 Mar 202300:00	–	bdu_fstec
CNNVD	Schneider Electric IGSS Data Server代码问题漏洞	21 Mar 202300:00	–	cnnvd
CNVD	Schneider Electric IGSS Data Server Code Issue Vulnerability	20 Mar 202300:00	–	cnvd
Cvelist	CVE-2023-27978	21 Mar 202300:00	–	cvelist
ICS	Schneider Electric IGSS	3 Apr 202319:38	–	ics
NVD	CVE-2023-27978	21 Mar 202309:15	–	nvd
OSV	CVE-2023-27978	21 Mar 202309:15	–	osv
Prion	Deserialization of untrusted data	21 Mar 202309:15	–	prion
Positive Technologies	PT-2023-1873 · Unknown · Igss Dashboard +2	14 Mar 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-27978	23 May 202503:34	–	redhatcve

NVD

Node

schneider-electric custom_reportsRange≤16.0.0.23040

schneider-electric igss_dashboardRange≤16.0.0.23040

schneider-electric igss_data_serverRange≤16.0.0.23040

[
  {
    "vendor": "Schneider Electric",
    "product": "IGSS Data Server(IGSSdataServer.exe)",
    "versions": [
      {
        "version": "V",
        "status": "affected",
        "lessThanOrEqual": "16.0.0.23040",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Schneider Electric",
    "product": "IGSS Dashboard (DashBoard.exe)",
    "versions": [
      {
        "version": "V",
        "status": "affected",
        "lessThanOrEqual": "16.0.0.23040",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Schneider Electric",
    "product": "Custom Reports (RMS16.dll)",
    "versions": [
      {
        "version": "V",
        "status": "affected",
        "lessThanOrEqual": "16.0.0.23040",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

17 Jun 2026 05:46Current

7.8High risk

Vulners AI Score7.8

CVSS 3.17.8

EPSS0.06482

SSVC

CWE-502