Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-7552 (GCVE-0-2020-7552)
Vulnerability from cvelistv5
Published
2020-11-19 21:07
Modified
2024-08-04 09:33
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-787 - Out-of-bounds Write
Summary
A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.
References
| URL | Tags | ||
|---|---|---|---|
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | IGSS Definition (Def.exe) version 14.0.0.20247 |
Version: IGSS Definition (Def.exe) version 14.0.0.20247 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T09:33:19.511Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "IGSS Definition (Def.exe) version 14.0.0.20247",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "IGSS Definition (Def.exe) version 14.0.0.20247"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787: Out-of-bounds Write ",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-04-19T12:22:26",
"orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
"shortName": "schneider"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2020-7552",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IGSS Definition (Def.exe) version 14.0.0.20247",
"version": {
"version_data": [
{
"version_value": "IGSS Definition (Def.exe) version 14.0.0.20247"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-787: Out-of-bounds Write "
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/",
"refsource": "MISC",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
"assignerShortName": "schneider",
"cveId": "CVE-2020-7552",
"datePublished": "2020-11-19T21:07:16",
"dateReserved": "2020-01-21T00:00:00",
"dateUpdated": "2024-08-04T09:33:19.511Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2020-7552\",\"sourceIdentifier\":\"cybersecurity@se.com\",\"published\":\"2020-11-19T22:15:14.303\",\"lastModified\":\"2024-11-21T05:37:22.017\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.\"},{\"lang\":\"es\",\"value\":\"Se presenta una vulnerabilidad de Escritura Fuera de L\u00edmites CWE-787 en IGSS Definition (Def.exe) versi\u00f3n 14.0.0.20247 que podr\u00eda causar una Ejecuci\u00f3n de C\u00f3digo Remota cuando se importa un archivo CGF (Configuration Group File) malicioso en IGSS Definition\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"cybersecurity@se.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"14.0.0.20247\",\"matchCriteriaId\":\"C299CAA6-D174-4217-97D9-7CDC9B9AD094\"}]}]}],\"references\":[{\"url\":\"https://www.se.com/ww/en/download/document/SEVD-2020-315-03/\",\"source\":\"cybersecurity@se.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.se.com/ww/en/download/document/SEVD-2020-315-03/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
ICSA-20-324-04
Vulnerability from csaf_cisa
Published
2020-11-17 00:00
Modified
2020-11-17 00:00
Summary
Schneider Electric Interactive Graphical SCADA System (IGSS)
Notes
CISA Disclaimer
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Legal Notice
All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation
Successful exploitation of these vulnerabilities may result in remote code execution.
Critical infrastructure sectors
Commercial Facilities, Critical Manufacturing, Energy
Countries/areas deployed
Worldwide
Company headquarters location
France
Recommended Practices
CISA recommends users take the following measures to protect themselves from social engineering attacks:
Recommended Practices
CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
CISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices
Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.
Exploitability
No known public exploits specifically target these vulnerabilities. These vulnerabilities are not exploitable remotely.
{
"document": {
"acknowledgments": [
{
"names": [
"Kimiya"
],
"organization": "Trend Micro \u0027s Zero Day Initiative",
"summary": "reporting these vulnerabilities to CISA"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of these vulnerabilities may result in remote code execution.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Commercial Facilities, Critical Manufacturing, Energy",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "France",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take the following measures to protect themselves from social engineering attacks:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities. These vulnerabilities are not exploitable remotely.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-20-324-04 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2020/icsa-20-324-04.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-20-324-04 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-20-324-04"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/ncas/tips/ST04-014"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Schneider Electric Interactive Graphical SCADA System (IGSS)",
"tracking": {
"current_release_date": "2020-11-17T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-20-324-04",
"initial_release_date": "2020-11-17T00:00:00.000000Z",
"revision_history": [
{
"date": "2020-11-17T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Publication Date"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 14.0.0.20247",
"product": {
"name": "IGSS Definition (Def.exe): Version 14.0.0.20247 and prior",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "IGSS Definition (Def.exe)"
}
],
"category": "vendor",
"name": "Schneider Electric Software, LLC"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7550",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7550 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7550"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7551",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7551 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7551"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7552",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7552 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7552"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7553",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7553 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7553"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7554",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7554 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7554"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7555",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) file is imported to IGSS Definition.CVE-2020-7555 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7555"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7556",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7556 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7556"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7557",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds read vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7557 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7557"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7558",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7558 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7558"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
}
]
}
icsa-20-324-04
Vulnerability from csaf_cisa
Published
2020-11-17 00:00
Modified
2020-11-17 00:00
Summary
Schneider Electric Interactive Graphical SCADA System (IGSS)
Notes
CISA Disclaimer
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Legal Notice
All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation
Successful exploitation of these vulnerabilities may result in remote code execution.
Critical infrastructure sectors
Commercial Facilities, Critical Manufacturing, Energy
Countries/areas deployed
Worldwide
Company headquarters location
France
Recommended Practices
CISA recommends users take the following measures to protect themselves from social engineering attacks:
Recommended Practices
CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
CISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices
Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.
Exploitability
No known public exploits specifically target these vulnerabilities. These vulnerabilities are not exploitable remotely.
{
"document": {
"acknowledgments": [
{
"names": [
"Kimiya"
],
"organization": "Trend Micro \u0027s Zero Day Initiative",
"summary": "reporting these vulnerabilities to CISA"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of these vulnerabilities may result in remote code execution.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Commercial Facilities, Critical Manufacturing, Energy",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "France",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take the following measures to protect themselves from social engineering attacks:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities. These vulnerabilities are not exploitable remotely.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-20-324-04 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2020/icsa-20-324-04.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-20-324-04 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-20-324-04"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/ncas/tips/ST04-014"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Schneider Electric Interactive Graphical SCADA System (IGSS)",
"tracking": {
"current_release_date": "2020-11-17T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-20-324-04",
"initial_release_date": "2020-11-17T00:00:00.000000Z",
"revision_history": [
{
"date": "2020-11-17T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Publication Date"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 14.0.0.20247",
"product": {
"name": "IGSS Definition (Def.exe): Version 14.0.0.20247 and prior",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "IGSS Definition (Def.exe)"
}
],
"category": "vendor",
"name": "Schneider Electric Software, LLC"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7550",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7550 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7550"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7551",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7551 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7551"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7552",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7552 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7552"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7553",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7553 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7553"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7554",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An improper restriction of operations within the bounds of a memory buffer vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7554 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7554"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7555",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) file is imported to IGSS Definition.CVE-2020-7555 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7555"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7556",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7556 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7556"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7557",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds read vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7557 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7557"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2020-7558",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds write vulnerability could cause remote code execution when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2020-7558 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7558"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has provided a new version of the IGSS Definition module to address these vulnerabilities. Users are recommended to update to IGSS Version 14.0.0.20248",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v140/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "Avoid importing CGF files from untrusted sources",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Users should also consider upgrading to the latest product offering IGSS v15 to resolve this issue.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/licensed-versions/"
},
{
"category": "mitigation",
"details": "For more information, see Schneider Electric security notification SEVD-2020-315-03",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
}
]
}
fkie_cve-2020-7552
Vulnerability from fkie_nvd
Published
2020-11-19 22:15
Modified
2024-11-21 05:37
Severity ?
Summary
A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| schneider-electric | interactive_graphical_scada_system | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C299CAA6-D174-4217-97D9-7CDC9B9AD094",
"versionEndIncluding": "14.0.0.20247",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition."
},
{
"lang": "es",
"value": "Se presenta una vulnerabilidad de Escritura Fuera de L\u00edmites CWE-787 en IGSS Definition (Def.exe) versi\u00f3n 14.0.0.20247 que podr\u00eda causar una Ejecuci\u00f3n de C\u00f3digo Remota cuando se importa un archivo CGF (Configuration Group File) malicioso en IGSS Definition"
}
],
"id": "CVE-2020-7552",
"lastModified": "2024-11-21T05:37:22.017",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-11-19T22:15:14.303",
"references": [
{
"source": "cybersecurity@se.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
],
"sourceIdentifier": "cybersecurity@se.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "cybersecurity@se.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
ghsa-g64m-c5v8-26mc
Vulnerability from github
Published
2022-05-24 17:34
Modified
2022-05-24 17:34
VLAI Severity ?
Details
A CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.
{
"affected": [],
"aliases": [
"CVE-2020-7552"
],
"database_specific": {
"cwe_ids": [
"CWE-119",
"CWE-787"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2020-11-19T22:15:00Z",
"severity": "HIGH"
},
"details": "A CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.",
"id": "GHSA-g64m-c5v8-26mc",
"modified": "2022-05-24T17:34:42Z",
"published": "2022-05-24T17:34:42Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7552"
},
{
"type": "WEB",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03"
},
{
"type": "WEB",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-125"
}
],
"schema_version": "1.4.0",
"severity": []
}
var-202011-1288
Vulnerability from variot
A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition. Interactive Graphical SCADA System (IGSS) Is Schneider Electric Software for monitoring and controlling control systems provided by the company. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric IGSS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of CGF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Interactive Graphical SCADA System has a buffer overflow vulnerability. No detailed vulnerability details are currently provided
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "interactive graphical scada system",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "14.0.0.20247"
},
{
"_id": null,
"model": "interactive graphical scada system",
"scope": "eq",
"trust": 0.8,
"vendor": "schneider electric",
"version": "version 14.0.0.20247"
},
{
"_id": null,
"model": "igss",
"scope": null,
"trust": 0.7,
"vendor": "schneider electric",
"version": null
},
{
"_id": null,
"model": "electric interactive graphical scada system",
"scope": null,
"trust": 0.6,
"vendor": "schneider",
"version": null
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-21-125"
},
{
"db": "CNVD",
"id": "CNVD-2020-67319"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "NVD",
"id": "CVE-2020-7552"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:schneider_electric:interactive_graphical_scada_system",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
}
]
},
"credits": {
"_id": null,
"data": "kimiya",
"sources": [
{
"db": "ZDI",
"id": "ZDI-21-125"
}
],
"trust": 0.7
},
"cve": "CVE-2020-7552",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CVE-2020-7552",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 1.0,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CNVD-2020-67319",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "VHN-185677",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "Low",
"attackVector": "Local",
"author": "IPA score",
"availabilityImpact": "High",
"baseScore": 7.8,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "JVNDB-2020-009593",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 7.2,
"userInteraction": "Required",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2020-7552",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "ZDI",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2020-7552",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 0.7,
"userInteraction": "REQUIRED",
"vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "IPA",
"id": "JVNDB-2020-009593",
"trust": 7.2,
"value": "High"
},
{
"author": "nvd@nist.gov",
"id": "CVE-2020-7552",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "ZDI",
"id": "CVE-2020-7552",
"trust": 0.7,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2020-67319",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-202011-1562",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-185677",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-21-125"
},
{
"db": "CNVD",
"id": "CNVD-2020-67319"
},
{
"db": "VULHUB",
"id": "VHN-185677"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "CNNVD",
"id": "CNNVD-202011-1562"
},
{
"db": "NVD",
"id": "CVE-2020-7552"
}
]
},
"description": {
"_id": null,
"data": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition. Interactive Graphical SCADA System (IGSS) Is Schneider Electric Software for monitoring and controlling control systems provided by the company. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric IGSS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of CGF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. \n\r\n\r\nInteractive Graphical SCADA System has a buffer overflow vulnerability. No detailed vulnerability details are currently provided",
"sources": [
{
"db": "NVD",
"id": "CVE-2020-7552"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "ZDI",
"id": "ZDI-21-125"
},
{
"db": "CNVD",
"id": "CNVD-2020-67319"
},
{
"db": "VULHUB",
"id": "VHN-185677"
}
],
"trust": 2.88
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2020-7552",
"trust": 3.8
},
{
"db": "SCHNEIDER",
"id": "SEVD-2020-315-03",
"trust": 2.3
},
{
"db": "ICS CERT",
"id": "ICSA-20-324-04",
"trust": 1.4
},
{
"db": "ZDI",
"id": "ZDI-21-125",
"trust": 1.3
},
{
"db": "JVN",
"id": "JVNVU99979220",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-11269",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2020-67319",
"trust": 0.7
},
{
"db": "CNNVD",
"id": "CNNVD-202011-1562",
"trust": 0.7
},
{
"db": "AUSCERT",
"id": "ESB-2020.4088",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-185677",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-21-125"
},
{
"db": "CNVD",
"id": "CNVD-2020-67319"
},
{
"db": "VULHUB",
"id": "VHN-185677"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "CNNVD",
"id": "CNNVD-202011-1562"
},
{
"db": "NVD",
"id": "CVE-2020-7552"
}
]
},
"id": "VAR-202011-1288",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-67319"
},
{
"db": "VULHUB",
"id": "VHN-185677"
}
],
"trust": 1.6749999999999998
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"ICS",
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-67319"
}
]
},
"last_update_date": "2024-11-23T21:35:03.725000Z",
"patch": {
"_id": null,
"data": [
{
"title": "Security Notification - Interactive Graphical SCADA System (IGSS)",
"trust": 0.8,
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03"
},
{
"title": "IGSS Licensed Versions",
"trust": 0.8,
"url": "https://igss.schneider-electric.com/licensed-versions"
},
{
"title": "Schneider Electric has issued an update to correct this vulnerability.",
"trust": 0.7,
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
},
{
"title": "Patch for Schneider Electric Interactive Graphical SCADA System buffer overflow vulnerability (CNVD-2020-67319)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/241399"
},
{
"title": "Schneider Electric Interactive Graphical SCADA System Buffer error vulnerability fix",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=135153"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-21-125"
},
{
"db": "CNVD",
"id": "CNVD-2020-67319"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "CNNVD",
"id": "CNNVD-202011-1562"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-787",
"trust": 1.9
},
{
"problemtype": "CWE-119",
"trust": 0.9
},
{
"problemtype": "CWE-125",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-185677"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "NVD",
"id": "CVE-2020-7552"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 3.0,
"url": "https://www.se.com/ww/en/download/document/sevd-2020-315-03/"
},
{
"trust": 1.4,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-324-04"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7550"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7558"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7551"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7552"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7553"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7554"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7555"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7556"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7557"
},
{
"trust": 0.8,
"url": "https://jvn.jp/vu/jvnvu99979220"
},
{
"trust": 0.6,
"url": "https://www.zerodayinitiative.com/advisories/zdi-21-125/"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-7552"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2020.4088/"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-21-125"
},
{
"db": "CNVD",
"id": "CNVD-2020-67319"
},
{
"db": "VULHUB",
"id": "VHN-185677"
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
},
{
"db": "CNNVD",
"id": "CNNVD-202011-1562"
},
{
"db": "NVD",
"id": "CVE-2020-7552"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-21-125",
"ident": null
},
{
"db": "CNVD",
"id": "CNVD-2020-67319",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-185677",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2020-009593",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-202011-1562",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2020-7552",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2021-02-01T00:00:00",
"db": "ZDI",
"id": "ZDI-21-125",
"ident": null
},
{
"date": "2020-11-27T00:00:00",
"db": "CNVD",
"id": "CNVD-2020-67319",
"ident": null
},
{
"date": "2020-11-19T00:00:00",
"db": "VULHUB",
"id": "VHN-185677",
"ident": null
},
{
"date": "2020-11-19T08:46:47",
"db": "JVNDB",
"id": "JVNDB-2020-009593",
"ident": null
},
{
"date": "2020-11-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202011-1562",
"ident": null
},
{
"date": "2020-11-19T22:15:14.303000",
"db": "NVD",
"id": "CVE-2020-7552",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2021-02-01T00:00:00",
"db": "ZDI",
"id": "ZDI-21-125",
"ident": null
},
{
"date": "2020-11-27T00:00:00",
"db": "CNVD",
"id": "CNVD-2020-67319",
"ident": null
},
{
"date": "2022-01-01T00:00:00",
"db": "VULHUB",
"id": "VHN-185677",
"ident": null
},
{
"date": "2020-11-19T08:46:47",
"db": "JVNDB",
"id": "JVNDB-2020-009593",
"ident": null
},
{
"date": "2021-04-20T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202011-1562",
"ident": null
},
{
"date": "2024-11-21T05:37:22.017000",
"db": "NVD",
"id": "CVE-2020-7552",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202011-1562"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Schneider Electric Made Interactive Graphical SCADA System Multiple vulnerabilities in",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2020-009593"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "buffer error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202011-1562"
}
],
"trust": 0.6
}
}
cnvd-2020-67319
Vulnerability from cnvd
Title
Schneider Electric Interactive Graphical SCADA System缓冲区溢出漏洞(CNVD-2020-67319)
Description
Schneider Electric Interactive Graphical SCADA System(IGSS)是法国施耐德电气(Schneider Electric)公司的一套用于监控和控制工业过程的SCADA(数据采集与监控系统)系统。
Interactive Graphical SCADA System存在缓冲区溢出漏洞,该漏洞源于当将恶意CGF(配置组文件)导入到IGSS定义时,对内存缓冲区漏洞范围内的操作进行不当限制可能导致远程代码执行。目前没有详细的漏洞细节提供。
Severity
中
VLAI Severity ?
Patch Name
Schneider Electric Interactive Graphical SCADA System缓冲区溢出漏洞(CNVD-2020-67319)的补丁
Patch Description
Schneider Electric Interactive Graphical SCADA System(IGSS)是法国施耐德电气(Schneider Electric)公司的一套用于监控和控制工业过程的SCADA(数据采集与监控系统)系统。
Interactive Graphical SCADA System存在缓冲区溢出漏洞,该漏洞源于当将恶意CGF(配置组文件)导入到IGSS定义时,对内存缓冲区漏洞范围内的操作进行不当限制可能导致远程代码执行。目前没有详细的漏洞细节提供。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,详情请关注厂商主页: https://www.se.com/us/en/
Reference
https://www.se.com/ww/en/download/document/SEVD-2020-315-03/
Impacted products
| Name | Schneider Electric Interactive Graphical SCADA System(IGSS) |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2020-7552",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-7552"
}
},
"description": "Schneider Electric Interactive Graphical SCADA System\uff08IGSS\uff09\u662f\u6cd5\u56fd\u65bd\u8010\u5fb7\u7535\u6c14\uff08Schneider Electric\uff09\u516c\u53f8\u7684\u4e00\u5957\u7528\u4e8e\u76d1\u63a7\u548c\u63a7\u5236\u5de5\u4e1a\u8fc7\u7a0b\u7684SCADA\uff08\u6570\u636e\u91c7\u96c6\u4e0e\u76d1\u63a7\u7cfb\u7edf\uff09\u7cfb\u7edf\u3002\n\nInteractive Graphical SCADA System\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5f53\u5c06\u6076\u610fCGF(\u914d\u7f6e\u7ec4\u6587\u4ef6)\u5bfc\u5165\u5230IGSS\u5b9a\u4e49\u65f6\uff0c\u5bf9\u5185\u5b58\u7f13\u51b2\u533a\u6f0f\u6d1e\u8303\u56f4\u5185\u7684\u64cd\u4f5c\u8fdb\u884c\u4e0d\u5f53\u9650\u5236\u53ef\u80fd\u5bfc\u81f4\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.se.com/us/en/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2020-67319",
"openTime": "2020-11-27",
"patchDescription": "Schneider Electric Interactive Graphical SCADA System\uff08IGSS\uff09\u662f\u6cd5\u56fd\u65bd\u8010\u5fb7\u7535\u6c14\uff08Schneider Electric\uff09\u516c\u53f8\u7684\u4e00\u5957\u7528\u4e8e\u76d1\u63a7\u548c\u63a7\u5236\u5de5\u4e1a\u8fc7\u7a0b\u7684SCADA\uff08\u6570\u636e\u91c7\u96c6\u4e0e\u76d1\u63a7\u7cfb\u7edf\uff09\u7cfb\u7edf\u3002\r\n\r\nInteractive Graphical SCADA System\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5f53\u5c06\u6076\u610fCGF(\u914d\u7f6e\u7ec4\u6587\u4ef6)\u5bfc\u5165\u5230IGSS\u5b9a\u4e49\u65f6\uff0c\u5bf9\u5185\u5b58\u7f13\u51b2\u533a\u6f0f\u6d1e\u8303\u56f4\u5185\u7684\u64cd\u4f5c\u8fdb\u884c\u4e0d\u5f53\u9650\u5236\u53ef\u80fd\u5bfc\u81f4\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Schneider Electric Interactive Graphical SCADA System\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2020-67319\uff09\u7684\u8865\u4e01",
"products": {
"product": "Schneider Electric Interactive Graphical SCADA System\uff08IGSS\uff09"
},
"referenceLink": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/",
"serverity": "\u4e2d",
"submitTime": "2020-11-26",
"title": "Schneider Electric Interactive Graphical SCADA System\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2020-67319\uff09"
}
gsd-2020-7552
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-7552",
"description": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.",
"id": "GSD-2020-7552"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-7552"
],
"details": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.",
"id": "GSD-2020-7552",
"modified": "2023-12-13T01:21:51.947981Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2020-7552",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IGSS Definition (Def.exe) version 14.0.0.20247",
"version": {
"version_data": [
{
"version_value": "IGSS Definition (Def.exe) version 14.0.0.20247"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-787: Out-of-bounds Write "
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/",
"refsource": "MISC",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "14.0.0.20247",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2020-7552"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2022-01-01T18:19Z",
"publishedDate": "2020-11-19T22:15Z"
}
}
}
CERTFR-2020-AVI-726
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Schneider Electric. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Schneider Electric | N/A | Premium processors avec Ethernet COPRO intégré (TSXP574634, TSXP575634, TSXP576634) toutes versions | ||
| Schneider Electric | N/A | Modicon M221 toutes références et toutes versions | ||
| Schneider Electric | N/A | PLC Simulator for EcoStruxure Control Expert toutes versions | ||
| Schneider Electric | N/A | EcoStruxure Building Operation - WebStation versions v2.0 à v3.1 | ||
| Schneider Electric | N/A | Quantum communication modules (140NOE771x1, 140NOC78x00, 140NOC77101) toutes versions | ||
| Schneider Electric | N/A | J Data Radios toutes versions | ||
| Schneider Electric | N/A | PLC Simulator for Unity Pro (anciennement EcoStruxure Control Expert) toutes versions | ||
| Schneider Electric | N/A | EcoStruxure Operator Terminal Expert Runtime 3.1 Service Pack 1A et versions antérieures (les ordinateurs Windows utilisant un UEFI ne sont pas impactés) | ||
| Schneider Electric | N/A | M340 modules de communication Ethernet (BMX NOE 0100 (H), BMX NOE 0110 (H), BMX NOC 0401, BMX NOR 0200H) toutes versions | ||
| Schneider Electric | N/A | Quantum processors avec Ethernet COPRO intégré 140CPU65xxxxx toutes versions | ||
| Schneider Electric | N/A | M340 CPUs BMX P34x toutes versions | ||
| Schneider Electric | N/A | EcoStruxure Building Operation - Enterprise Server installer versions v1.9 à v3.1 | ||
| Schneider Electric | N/A | Trio Q toutes versions | ||
| Schneider Electric | N/A | EcoStruxure Building Operation - WebReports versions v1.9 à v3.1 | ||
| Schneider Electric | N/A | Premium communication modules (TSXETY4103, TSXETY5103) toutes versions | ||
| Schneider Electric | N/A | EcoStruxure Building Operation - Enterprise Central installer versions v2.0 à v3.1 | ||
| Schneider Electric | N/A | IGSS Definition (Def.exe) version 14.0.0.20247 et versions antérieures | ||
| Schneider Electric | N/A | Easergy T300 versions antérieures à 2.7 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Premium processors avec Ethernet COPRO int\u00e9gr\u00e9 (TSXP574634, TSXP575634, TSXP576634) toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M221 toutes r\u00e9f\u00e9rences et toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PLC Simulator for EcoStruxure Control Expert toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Building Operation - WebStation versions v2.0 \u00e0 v3.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Quantum communication modules (140NOE771x1, 140NOC78x00, 140NOC77101) toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "J Data Radios toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PLC Simulator for Unity Pro (anciennement EcoStruxure Control Expert) toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Operator Terminal Expert Runtime 3.1 Service Pack 1A et versions ant\u00e9rieures (les ordinateurs Windows utilisant un UEFI ne sont pas impact\u00e9s)",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "M340 modules de communication Ethernet (BMX NOE 0100 (H), BMX NOE 0110 (H), BMX NOC 0401, BMX NOR 0200H) toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Quantum processors avec Ethernet COPRO int\u00e9gr\u00e9 140CPU65xxxxx toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "M340 CPUs BMX P34x toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Building Operation - Enterprise Server installer versions v1.9 \u00e0 v3.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Trio Q toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Building Operation - WebReports versions v1.9 \u00e0 v3.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Premium communication modules (TSXETY4103, TSXETY5103) toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Building Operation - Enterprise Central installer versions v2.0 \u00e0 v3.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "IGSS Definition (Def.exe) version 14.0.0.20247 et versions ant\u00e9rieures",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Easergy T300 versions ant\u00e9rieures \u00e0 2.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-7564",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7564"
},
{
"name": "CVE-2020-7563",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7563"
},
{
"name": "CVE-2020-7558",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7558"
},
{
"name": "CVE-2020-7561",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7561"
},
{
"name": "CVE-2020-7555",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7555"
},
{
"name": "CVE-2020-7565",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7565"
},
{
"name": "CVE-2020-7570",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7570"
},
{
"name": "CVE-2020-7572",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7572"
},
{
"name": "CVE-2020-28213",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28213"
},
{
"name": "CVE-2020-7554",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7554"
},
{
"name": "CVE-2020-7557",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7557"
},
{
"name": "CVE-2020-7550",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7550"
},
{
"name": "CVE-2020-7553",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7553"
},
{
"name": "CVE-2020-7559",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7559"
},
{
"name": "CVE-2020-7566",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7566"
},
{
"name": "CVE-2020-7538",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7538"
},
{
"name": "CVE-2020-7556",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7556"
},
{
"name": "CVE-2020-28212",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28212"
},
{
"name": "CVE-2020-7562",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7562"
},
{
"name": "CVE-2020-7571",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7571"
},
{
"name": "CVE-2020-7552",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7552"
},
{
"name": "CVE-2020-28211",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28211"
},
{
"name": "CVE-2020-7551",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7551"
},
{
"name": "CVE-2020-7567",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7567"
},
{
"name": "CVE-2020-7544",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7544"
}
],
"initial_release_date": "2020-11-12T00:00:00",
"last_revision_date": "2020-11-12T00:00:00",
"links": [],
"reference": "CERTFR-2020-AVI-726",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-11-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSchneider Electric. Certaines d\u0027entre elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de\nservice \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Schneider Electric",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2020-315-05 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-05/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2020-315-03 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-03/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2020-315-07 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-07/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2020-315-01 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-01/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2020-315-04 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-04/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2020-315-06 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-06/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2020-315-02 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SEVD-2020-315-02/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SESB-2020-315-01 du 11 novembre 2020",
"url": "https://www.se.com/ww/en/download/document/SESB-2020-315-01/"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…