CVE-2020-6970

Summary

A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA Server 2.83 (if Modbus or ROC Interfaces have been installed and are in use) and all versions of OpenEnterprise 3.1 through 3.3.3, where a specially crafted script could execute code on the OpenEnterprise Server.

Affected Software

VendorProductVersion RangeStatus
EmersonOpenEnterprise SCADA Server2.83 (if Modbus or ROC Interfaces have been installed and are in use)affected
EmersonOpenEnterprise3.1 through 3.3.3affected

Weaknesses

  • CWE-122: HEAP-BASED BUFFER OVERFLOW CWE-122

ADP Enrichment

CVE Program Container

Additional References

References