4 matches found
CVE-2020-7560
A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert all versions and Unity Pro former name of EcoStruxure™ Control Expert all versions, that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control...
Schneider (CVE-2020-7560)(deprecated)
Plugin deprecated because unitypro is not detectable in this way This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2023/03/10. Deprecated because...
CVE-2020-7560
creationtimestamp| type| source ---|---|--- 2020-12-23 16:32:22+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2259...
CVE-2020-7560
CVE-2020-7560 affects Schneider Electric EcoStruxure Control Expert (and Unity Pro) across all versions. A CWE-123 Write-what-where flaw in APX/STA file parsing allows crafted APX data to overflow/overwrite heap memory via a manipulated RTE_offset and RTE_length, enabling arbitrary writes through...