CVE-2021-22823

CVE-2021-22823

Vendor N/A
Product Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)
Weakness CWE-306 · Missing auth
Published February 11, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network messages. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)

Key dates

02Disclosure timeline

February 11, 2022 CVE published
August 3, 2024 Record updated