Vulnerabilities > CVE-2020-7531 - Unspecified vulnerability in Schneider-Electric Scadapack 7X Remote Connect 3.6.3.574
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
schneider-electric
Summary
A CWE-284 Improper Access Control vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place executables in a specific folder and run code whenever RemoteConnect is executed by the user.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |