Lucene search
IcscertCVELIST:CVE-2020-10644HistoryJun 09, 2020 - 5:50 p.m.
CVE-2020-10644
2020-06-0917:50:58
CWE-502
icscert
www.cve.org
0.829 High
EPSS
Percentile
98.5%
The affected product lacks proper validation of user-supplied data, which can result in deserialization of untrusted data on the Ignition 8 Gateway (versions prior to 8.0.10) and Ignition 7 Gateway (versions prior to 7.9.14), allowing an attacker to obtain sensitive information.
CNA Affected
[
{
"product": "Ignition 8 Gateway",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "versions prior to 7.9.14 and 8.0.10"
}
]
}
]Related
cve
cve
CVE-2020-10644
2020-06-09 18:15:10
nvd
nvd
CVE-2020-10644
2020-06-09 18:15:10
zdi
zdi
prion
prion
Deserialization of untrusted data
2020-06-09 18:15:00
packetstorm
packetstorm
Inductive Automation Ignition Remote Code Execution
2020-06-25 00:00:00
checkpoint_advisories
checkpoint_advisories
attackerkb
attackerkb
CVE-2020-12004
2020-06-09 00:00:00
CVE-2020-10644
2020-06-09 00:00:00
zdt
zdt
Inductive Automation Ignition Remote Code Execution Exploit
2020-06-26 00:00:00
0daydb
0daydb
Inductive Automation Ignition - Remote Code Execution
2020-06-28 01:09:34
nessus
nessus
Inductive Automation Ignition 8.x < 8.0.10 Multiple Vulnerabilities
2020-06-11 00:00:00
ics
ics
Inductive Automation Ignition (Update B)
2020-07-14 12:00:00