3 matches found
CVE-2020-7544
A CWE-269 Improper Privilege Management vulnerability exists in EcoStruxureª Operator Terminal Expert runtime Vijeo XD that could cause privilege escalation on the workstation when interacting directly with a driver installed by the runtime software of EcoStruxureª Operator Terminal Expert...
Schneider Electric EcoStruxure Operator Terminal Expert runtime (Vijeo XD)
1. EXECUTIVE SUMMARY CVSS v3 7.4 Vendor: Schneider Electric Equipment: EcoStruxure Operator Terminal Expert Vulnerability: Improper Privilege Management 2. RISK EVALUATION Successful exploitation of this vulnerability may allow unauthorized command execution by a local user of the Windows...
CVE-2020-7544
CVE-2020-7544 affects Schneider Electric EcoStruxure Operator Terminal Expert runtime (Vijeo XD). A CWE-269 improper privilege management vulnerability could enable privilege escalation on a workstation when interacting with a driver installed by the runtime. The vulnerability is reported for Eco...