Lucene search
SchneiderCVELIST:CVE-2020-7493HistoryJun 16, 2020 - 7:10 p.m.
CVE-2020-7493
2020-06-1619:10:35
CWE-89
schneider
www.cve.org
0.001 Low
EPSS
Percentile
41.1%
A CWE-89: Improper Neutralization of Special Elements used in an SQL Command (βSQL Injectionβ) vulnerability exists in EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD) which could cause malicious code execution when opening the project file.
CNA Affected
[
{
"product": "EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD)",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD)"
}
]
}
]Related
zdi
zdi
prion
prion
Sql injection
2020-06-16 20:15:00
cve
cve
CVE-2020-7493
2020-06-16 20:15:14
nvd
nvd
CVE-2020-7493
2020-06-16 20:15:14
ics
ics
Schneider Electric EcoStruxure Operator Terminal Expert
2020-05-21 12:00:00