ICSA-21-063-02 — Vulnetix

ICSA-21-063-02 PUBLISHED CVSS 4.599999904632568 MEDIUM

Luis Vázquez, Francisco Palma, and Diego León of Zerolynx in coordination with INCIBE and Alessandro Bosco, Luca Di Giuseppe, Alessandro Sabetta, and Massimiliano Brolli of TIM Security Red Team Research reported these vulnerabilities to Schneider Electric.

Risk Scores

CVSS v3.1

4.599999904632568

CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

Affected Products

Vendor	Product	Versions
	Enterprise Server installer: v1.9 - v3.1
	WebStation: v2.0 - v3.1
	Enterprise Central installer: v2.0 - v3.1
	WebReports: v1.9 - v3.1

Timeline

Mar 4, 2021 CVE Published

References

https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-063-02.json advisory
https://www.cisa.gov/news-events/ics-advisories/icsa-21-063-02 advisory
https://www.se.com/ww/en/work/support/country-selector/contact-us.jsp fix
https://www.se.com/ww/en/download/document/SEVD-2020-315-04/ fix

Open in Interactive Console →