VDB
CVE-2023-7032
CVE-2023-7032
PUBLISHED
CVSS 7.800000190734863 HIGH
A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker logged in with a user level account to gain higher privileges by providing a harmful serialized object.
EPSS 0.11% · 28.7th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.11%
28.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| schneider-electric | easergy_studio | 0, 0, 0 |
| Schneider Electric | Easergy Studio | *, All |
Exploit Intelligence
- CIRCL seen: CVE-2023-7032 (circl-sighting)
- CIRCL seen: CVE-2023-7032 (circl-sighting)
- CIRCL seen: CVE-2023-7032 (circl-sighting)
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-009-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-009-02.pdf (circl)
Timeline
- Jan 9, 2024 CVE Published
- Jan 9, 2024 PoC Published
- Jan 17, 2024 EPSS Score
- Jan 27, 2024 PoC Published
- Feb 11, 2024 PoC Published
- Feb 14, 2024 EPSS Score
- Mar 13, 2024 EPSS Score
- Apr 10, 2024 EPSS Score
- May 8, 2024 EPSS Score
- Jun 5, 2024 EPSS Score
- Jul 3, 2024 EPSS Score
- Jul 31, 2024 EPSS Score
References
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-009-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-009-02.pdf url
- https://nvd.nist.gov/vuln/detail/CVE-2023-7032 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2019-225-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=sevd-2019-225-01.json advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-03.pdf advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-06&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-010-06_Modicon_Controllers_Security_Notification.pdf advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-01.pdf advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-192-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-192-04.pdf advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2021-159-04_ISaGRAF_Security_Notification.pdf advisory