Schneider-Electric: >> Scadapack Workbench >> 6.6.8a Security Vulnerabilities
A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could result in information disclosure when opening a malicious solution file provided by an attacker with SCADAPack Workbench. This could be exploited to pass data from local files to a remote system controlled by an attacker. Affected Product: SCADAPack Workbench (6.6.8a and prior)
CVSS Score
5.5
EPSS Score
0.002
Published
2022-04-13