CVE-2020-7560

CVE-2020-7560

Vendor N/A
Product EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions)
Weakness CWE-123
Published December 11, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions), that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control Expert software.

Key dates

02Disclosure timeline

December 11, 2020 CVE published
August 4, 2024 Record updated