HIGH🇬🇧 English

CVE-2020-10632

CVSS 8.8v3.1pub. 2022-02-24upd. 2024-11-21

Inadequate folder security permissions in Emerson OpenEnterprise versions through 3.3.4 may allow modification of important configuration files, which could cause the system to fail or behave in an unpredictable manner.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Emerson Openenterprise Scada Server

    APP
    Emerson
    ≤ 3.3.4
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2020-10640CRITICAL10.0ten sam produkt

Emerson OpenEnterprise versions through 3.3.4 may allow an attacker to run an arbitrary commands with system p...

CVE-2020-6970CRITICAL9.8ten sam produkt

A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA Server 2.83 (if Modbus or ROC Interface...

CVE-2020-10636MEDIUM6.5ten sam produkt

Inadequate encryption may allow the passwords for Emerson OpenEnterprise versions through 3.3.4 user accounts ...

CVE-2020-16235LOW3.8ten sam produkt

Inadequate encryption may allow the credentials used by Emerson OpenEnterprise, up through version 3.3.5, to a...

CVE-2023-46687CRITICAL9.8PL ✓ten sam vendor

Emerson Rosemount GC370XA/GC700XA/GC1500XA — zdalne RCE jako root bez uwierzytelnienia