Lucene search
IcscertCVELIST:CVE-2023-0898HistoryNov 07, 2023 - 4:34 p.m.
CVE-2023-0898 Uncontrolled Search Path Element in GE MiCOM S1 Agile
2023-11-0716:34:41
CWE-427
icscert
www.cve.org
4
general electric
micom s1 agile
vulnerable
code execution
dll files
directory
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:H
EPSS
0
Percentile
0.3%
General Electric MiCOM S1 Agile is vulnerable to an attacker achieving code execution by placing malicious DLL files in the directory of the application.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "MiCOM S1 Agile",
"vendor": "General Electric",
"versions": [
{
"status": "affected",
"version": "All versions "
}
]
}
]Related
ics
ics
GE MiCOM S1 Agile
2023-11-07 12:00:00
GE MiCOM S1 Agile
2023-11-07 12:00:00
nvd
nvd
CVE-2023-0898
2023-11-07 17:15:09
prion
prion
Design/Logic Flaw
2023-11-07 17:15:00
cve
cve
CVE-2023-0898
2023-11-07 17:15:09
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:H
EPSS
0
Percentile
0.3%
Related for CVELIST:CVE-2023-0898