CVE-2020-7545

CVE-2020-7545

Vendor N/A

Product EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information)

Weakness CWE-284

Published December 1, 2020

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A CWE-284:Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow for arbitrary code execution on the server when an authorized user access an affected webpage.

Key dates

02Disclosure timeline

December 1, 2020 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-7545 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html

Related vulnerabilities

Identifiers

CVE CVE-2020-7545

CWE CWE-284

Affected versions

Vendor N/A

Product EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information)

Affected EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for v

01Description

02Disclosure timeline

03References

04Related CVE