MEDIUM🇵🇱 Wersja polska

CVE-2023-31172

CVSS 5.9v3.1pub. 2023-08-31upd. 2024-11-21

An Incomplete Filtering of Special Elements vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5030 acSELerator QuickSet Software: through 7.1.3.0.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
  • Selinc Sel 5030 Acselerator Quickset

    APP
    Selinc
    ≤ 7.1.3.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-31168MEDIUM5.5ten sam produkt

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the Schweitzer Engineering Labor...

CVE-2023-31169MEDIUM4.8ten sam produkt

An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering Laboratories SEL-5030 ac...

CVE-2023-31170MEDIUM5.9ten sam produkt

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the Schweitzer Engineering Labor...

CVE-2023-31171MEDIUM5.9ten sam produkt

An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in the ...

CVE-2023-31148CRITICAL9.1ten sam vendor

An Improper Input Validation vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation C...