CVE-2020-7530
HIGHSCADAPack 7x Remote Connect < 3.6.3.574 - Improper Authorization
Title source: llmDescription
A CWE-285 Improper Authorization vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows improper access to executable code folders.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.se.com/ww/en/download/document/SEVD-2020-252-01/
Scores
CVSS v3
8.8
EPSS
0.0034
EPSS Percentile
57.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-285
Status
published
Products (1)
schneider-electric/scadapack_7x_remote_connect
< 3.6.3.574
Published
Sep 16, 2020
Tracked Since
Feb 18, 2026