Vulnerability Details CVE-2020-10637
Eaton HMiSoft VU3 (HMIVU3 runtime not impacted), Version 3.00.23 and prior, however, the HMIVU runtimes are not impacted by these issues. A specially crafted input file could trigger an out-of-bounds read when loaded by the affected product.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.7%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
Products affected by CVE-2020-10637
-
cpe:2.3:h:eaton:hmisoft_vu3:-
-
cpe:2.3:o:eaton:hmisoft_vu3_firmware:-
-
cpe:2.3:o:eaton:hmisoft_vu3_firmware:3.00.23