AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Gp pro ex 4.082/2/2023 Schneider Electric has produced Version 4.08.200 of the software. Yu Quiang of Venustech’s ADLab reported this vulnerability to NCCIC. CRITICAL INFRASTRUCTURE SECTORS: Energy.A CVSS v3 base score of 9.0 has been assigned the CVSS vector string is ( AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H). The program’s code contains an error in which an arbitrary executable can be launched.ĬVE-2018-7832 has been assigned to this vulnerability. Pro-face GP-Pro EX Version 4.08 and prior.The following versions of Pro-face GP-Pro EX, an HMI screen editor and logic programming software, are affected: Successful exploitation of this vulnerability could allow an attacker to modify code to launch an arbitrary executable upon launch of the program. ![]() Vulnerability: Improper Input Validation.ATTENTION: Exploitable remotely/low skill level to exploit.
0 Comments
Read More
Leave a Reply. |