Vulnerability Details CVE-2020-7490
A CWE-426: Untrusted Search Path vulnerability exists in Vijeo Designer Basic (V1.1 HotFix 15 and prior) and Vijeo Designer (V6.9 SP9 and prior), which could cause arbitrary code execution on the system running Vijeo Basic when a malicious DLL library is loaded by the Product.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.0%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.9
References
Products affected by CVE-2020-7490
-
cpe:2.3:a:schneider-electric:vijeo_designer:-
-
cpe:2.3:a:schneider-electric:vijeo_designer:1.0
-
cpe:2.3:a:schneider-electric:vijeo_designer:1.1
-
cpe:2.3:a:schneider-electric:vijeo_designer:6.2
-
cpe:2.3:a:schneider-electric:vijeo_designer:6.9