CVE-2020-7485

Published: Apr 16, 2020Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

**VERSION NOT SUPPORTED WHEN ASSIGNED** A legacy support account in the TriStation software version v4.9.0 and earlier could cause improper access to the TriStation host machine. This was addressed in TriStation version v4.9.1 and v4.10.1 released on May 30, 2013.1

Affected (3)

Products: Schneider Electric: Tristation 1131

Schneider Electric

1 product

Tristation 1131

Configuration A

3 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Schneider Electric Tristation 1131	From 1.0.0 to 4.9.0
Schneider Electric Tristation 1131	Version 4.10.0
Schneider Electric Tristation 1131	Version 4.12.0

Running on/with	Platform Versions
Microsoft Windows 7	All versions
Microsoft Windows Nt	All versions
Microsoft Windows Xp	All versions

References (4)

https://us-cert.cisa.gov/ics/advisories/icsa-20-205-01

Source: cybersecurity@se.com

Third Party AdvisoryUS Government Resource

https://www.se.com/ww/en/download/document/SESB-2020-105-01

Source: cybersecurity@se.com

Vendor Advisory

https://us-cert.cisa.gov/ics/advisories/icsa-20-205-01

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

https://www.se.com/ww/en/download/document/SESB-2020-105-01

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.