Количество 3
Количество 3
CVE-2020-7493
A CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD) which could cause malicious code execution when opening the project file.
GHSA-4vgg-42gm-vqxc
A CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD) which could cause malicious code execution when opening the project file.
BDU:2020-02806
Уязвимость программного обеспечения для конфигурации сенсорного экрана Schneider Electric EcoStruxure Operator Terminal Expert, связанная с некорректной обработкой VXDZ файлов, позволяющая нарушителю выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-7493 A CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD) which could cause malicious code execution when opening the project file. | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| GHSA-4vgg-42gm-vqxc A CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD) which could cause malicious code execution when opening the project file. | 0% Низкий | больше 3 лет назад | |
 | BDU:2020-02806 Уязвимость программного обеспечения для конфигурации сенсорного экрана Schneider Electric EcoStruxure Operator Terminal Expert, связанная с некорректной обработкой VXDZ файлов, позволяющая нарушителю выполнить произвольный код | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
Уязвимостей на страницу