Lucene search
PRIOn knowledge basePRION:CVE-2020-28221HistoryJan 26, 2021 - 6:15 p.m.
Input validation
2021-01-2618:15:00
PRIOn knowledge base
www.prio-n.com
2
A CWE-20: Improper Input Validation vulnerability exists in EcoStruxure™ Operator Terminal Expert and Pro-face BLUE (version details in the notification) that could cause arbitrary code execution when the Ethernet Download feature is enable on the HMI.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ecostruxure_operator_terminal_expert | eq | 3.1 | |
| ecostruxure_operator_terminal_expert | eq | 3.1 sp1a | |
| pro-face_blue | eq | 3.1 sp1a | |
| pro-face_blue | eq | 3.1 |
Related
cve
cve
CVE-2020-28221
2021-01-26 18:15:47
nvd
nvd
CVE-2020-28221
2021-01-26 18:15:47
cvelist
cvelist
CVE-2020-28221
2021-01-25 17:08:37