CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7560

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions), that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control Expert software.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.8%

CVSS Severity

CVSS v3 Score 8.6

CVSS v2 Score 6.8

References

Products affected by CVE-2020-7560

Schneider-Electric » Ecostruxure Control Expert » Version: N/A

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:-
Schneider-Electric » Ecostruxure Control Expert » Version: 14.0

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:14.0
Schneider-Electric » Ecostruxure Control Expert » Version: 14.1

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:14.1
Schneider-Electric » Ecostruxure Control Expert » Version: 15.0

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:15.0
Schneider-Electric » Ecostruxure Control Expert » Version: 15.1

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:15.1
Schneider-Electric » Ecostruxure Control Expert » Version: 15.2

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:15.2
Schneider-Electric » Ecostruxure Control Expert » Version: 15.3

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:15.3
Schneider-Electric » Ecostruxure Control Expert » Version: 16.0

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:16.0
Schneider-Electric » Unity Pro » Version: 11.0

cpe:2.3:a:schneider-electric:unity_pro:11.0
Schneider-Electric » Unity Pro » Version: 6.0

cpe:2.3:a:schneider-electric:unity_pro:6.0
Schneider-Electric » Unity Pro » Version: 7.0

cpe:2.3:a:schneider-electric:unity_pro:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7560

Products

Pricing

Contact Us