Vulnerabilities > CVE-2022-24317 - Unspecified vulnerability in Schneider-Electric Interactive Graphical Scada System Data Server

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
schneider-electric

Summary

A CWE-862: Missing Authorization vulnerability exists that could cause information exposure when an attacker sends a specific message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)

Vulnerable Configurations

Part Description Count
Application
Schneider-Electric
1