A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability exists on EcoStruxure Machine Expert – Basic or SoMachine Basic programming software (versions in security notification). The result of this vulnerability, DLL substitution, could allow the transference of malicious code to the controller.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
22/04/2020
by Schneider-Electric
3 years ago
by Schneider-Electric
4 years ago
by Schneider-Electric
3 years ago
by SE
3 years ago
by SE
4 years ago
by SE
4 years ago
by Schneider-Electric
4 years ago
by Schneider-Electric
4 years ago