A CWE-306: Missing Authentication for Critical Function vulnerability exists in the IGSS Update
Service that could allow a local attacker to change update source, potentially leading to remote
code execution when the attacker force an update containing malicious content.
CPE | Name | Operator | Version |
---|---|---|---|
interactive_graphical_scada_system | le | 16.0.0.23211 |