CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-7544

A CWE-269 Improper Privilege Management vulnerability exists in EcoStruxureª Operator Terminal Expert runtime (Vijeo XD) that could cause privilege escalation on the workstation when interacting directly with a driver installed by the runtime software of EcoStruxureª Operator Terminal Expert.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.2%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

https://www.se.com/ww/en/download/document/SEVD-2020-315-02/
https://www.se.com/ww/en/download/document/SEVD-2020-315-02/

Products affected by CVE-2020-7544

Schneider-Electric » Operator Terminal Expert Runtime » Version: N/A

cpe:2.3:a:schneider-electric:operator_terminal_expert_runtime:-
Schneider-Electric » Operator Terminal Expert Runtime » Version: 3.1

cpe:2.3:a:schneider-electric:operator_terminal_expert_runtime:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7544

Products

Pricing

Contact Us