Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:54 p.m.7 views

CVE-2020-7479

A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS Versions 14 and prior using the service: IGSSupdate, which could allow a local user to execute processes that otherwise require escalation privileges when sending local network commands to the IGSS Update Service...

7.8CVSS7.5AI score0.00509EPSS
Exploits0References1
ICS
ICS
added 2020/03/24 12:0 a.m.91 views

Schneider Electric IGSS SCADA Software

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Schneider Electric Equipment: IGSS Interactive Graphical SCADA System Vulnerabilities: Path Traversal, Missing Authentication for Critical Function 2. RISK EVALUATION Successful exploitation of...

7.8CVSS8.5AI score0.03966EPSS
Exploits0References5
NVD
NVD
added 2020/03/23 8:15 p.m.37 views

CVE-2020-7479

A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS Versions 14 and prior using the service: IGSSupdate, which could allow a local user to execute processes that otherwise require escalation privileges when sending local network commands to the IGSS Update Service...

7.8CVSS8AI score0.00509EPSS
Exploits0References2
CVE
CVE
added 2020/03/23 7:18 p.m.54 views

CVE-2020-7479

Schneider Electric IGSS (Interactive Graphical SCADA System) IGSSupdate service versions 14 and prior are affected by CVE-2020-7479 (Missing Authentication for Critical Function). The vulnerability enables a local user to execute processes requiring elevated privileges when sending local network ...

7.8CVSS7.9AI score0.00509EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder