VDB
SEVD-2020-252-01
SEVD-2020-252-01
PUBLISHED
CVSS 7.300000190734863 HIGH
Schneider Electric is aware of multiple vulnerabilities in the SCADAPack x70 Remote Connect and the SCADAPack x70 Security Administrator applications.
Risk Scores
CVSS 3.1
7.300000190734863
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schneider Electric SCADAPack x70 Remote Connect V3.6.3.574 and prior | ||
| Schneider Electric SCADAPack x70 RemoteConnect V3.7.3.904 | ||
| Schneider Electric SCADAPack x70 Security Administrator V1.2.0 and prior | ||
| Schneider Electric SCADAPack x70 Security Administrator V1.6.2 |
Exploit Intelligence
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2020-252-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2020-252-01_SCADAPack_RemoteConnect_and_Security_Administrator%20V1.2.pdf (circl)
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2020-252-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=sevd-2020-252-01.json (circl)
- https://www.se.com/us/en/download/document/7EN52-0390/ (circl)
- https://shop.exchange.se.com/en-US/apps/58663 (circl)
Timeline
- Sep 8, 2020 CVE Published
- Feb 9, 2021 CVE Updated
References
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2020-252-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2020-252-01_SCADAPack_RemoteConnect_and_Security_Administrator%20V1.2.pdf advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2020-252-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=sevd-2020-252-01.json advisory
- https://www.se.com/us/en/download/document/7EN52-0390/ url
- https://shop.exchange.se.com/en-US/apps/58663 fix