CVE-2023-27982

🗓️ 21 Mar 2023 00:00:00Reported by schneiderType

CVE-2023-27982: CWE-345 vulnerability in IGSS Data Server allows remote code execution

Reporter	Title	Published	Views	Family All 10
CNNVD	Schneider Electric IGSS Data Server 数据伪造问题漏洞	21 Mar 202300:00	–	cnnvd
CNVD	Schneider Electric IGSS Data Server Data Forgery Issue Vulnerability (CNVD-2023-29373)	20 Mar 202300:00	–	cnvd
Cvelist	CVE-2023-27982	21 Mar 202300:00	–	cvelist
EUVD	EUVD-2023-31708	3 Oct 202520:07	–	euvd
ICS	Schneider Electric IGSS	3 Apr 202319:38	–	ics
NVD	CVE-2023-27982	21 Mar 202307:15	–	nvd
Prion	Remote code execution	21 Mar 202307:15	–	prion
RedhatCVE	CVE-2023-27982	23 May 202502:27	–	redhatcve
Vulnrichment	CVE-2023-27982	21 Mar 202300:00	–	vulnrichment
Zero Day Initiative	Schneider Electric IGSS IGSSdataServer Exposed Dangerous Function Remote Code Execution Vulnerability	16 Mar 202300:00	–	zdi

NVD

Node

schneider-electric custom_reportsRange≤16.0.0.23040

schneider-electric igss_dashboardRange≤16.0.0.23040

schneider-electric igss_data_serverRange≤16.0.0.23040

[
  {
    "vendor": "Schneider Electric",
    "product": "IGSS Data Server(IGSSdataServer.exe)",
    "versions": [
      {
        "version": "V",
        "status": "affected",
        "lessThanOrEqual": "16.0.0.23040",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Schneider Electric",
    "product": "IGSS Dashboard (DashBoard.exe)",
    "versions": [
      {
        "version": "V",
        "status": "affected",
        "lessThanOrEqual": "16.0.0.23040",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Schneider Electric",
    "product": "Custom Reports (RMS16.dll)",
    "versions": [
      {
        "version": "V",
        "status": "affected",
        "lessThanOrEqual": "16.0.0.23040",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

21 Nov 2024 07:53Current

8.8High risk

Vulners AI Score8.8

CVSS 3.18.8

EPSS0.00383

SSVC

CWE-345