exploitDog

GHSA-523f-8c6h-pj8g

Опубликовано: 20 авг. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-347 Improper Verification of Cryptographic Signature, and does not properly verify compiled logic (PDT files) and data blocks data (BLD/BLK files).

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-347 Improper Verification of Cryptographic Signature, and does not properly verify compiled logic (PDT files) and data blocks data (BLD/BLK files).

Ссылки

EPSS

Процентиль: 8%

0.00028

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-347

Связанные уязвимости

CVE-2022-2790

CVSS3: 5.9

nvd

больше 3 лет назад

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-347 Improper Verification of Cryptographic Signature, and does not properly verify compiled logic (PDT files) and data blocks data (BLD/BLK files).

EPSS

Процентиль: 8%

0.00028

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-347