Описание
In Horner Automation Cscape versions 9.90 SP10 and prior, local attackers are able to exploit this vulnerability if a user opens a malicious CSP file, which would result in execution of arbitrary code on affected installations of Cscape.
Ссылки
- Product
- Third Party AdvisoryUS Government Resource
- Product
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 9.90 (исключая)
Одно из
cpe:2.3:a:hornerautomation:cscape:*:*:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:-:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp1:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp10:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp2:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp3:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp4:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp5:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp6:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp7:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp7.1:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp8:*:*:*:*:*:*
cpe:2.3:a:hornerautomation:cscape:9.90:sp9:*:*:*:*:*:*
EPSS
Процентиль: 10%
0.00036
Низкий
7.8 High
CVSS3
Дефекты
CWE-121
CWE-787
Связанные уязвимости
CVSS3: 7.8
github
около 2 лет назад
In Horner Automation Cscape versions 9.90 SP10 and prior, local attackers are able to exploit this vulnerability if a user opens a malicious CSP file, which would result in execution of arbitrary code on affected installations of Cscape.
EPSS
Процентиль: 10%
0.00036
Низкий
7.8 High
CVSS3
Дефекты
CWE-121
CWE-787