VDB

ICSA-20-336-01

ICSA-20-336-01 PUBLISHED CVSS 7.400000095367432 HIGH

Successful exploitation of this vulnerability may allow unauthorized command execution by a local user of the Windows engineering workstation, which could result in loss of availability, confidentiality, and integrity of the workstation where EcoStruxure Operator Terminal Expert runtime is installed.

Risk Scores

CVSS 3.1
7.400000095367432
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Harmony iPC (HMIG5U HMIG5U2) using legacy BIOS EcoStruxure Operator Terminal Expert Runtime: 3.1 Service Pack 1A and prior installed
Windows PC using legacy BIOS EcoStruxure Operator Terminal Expert Runtime: 3.1 Service Pack 1A and prior installed

Timeline

  • Dec 1, 2020 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›