CVE-2020-7560

Summary

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions), that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control Expert software.

Affected Software

VendorProductVersion RangeStatus
n/aEcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions)EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions)affected

Weaknesses

  • CWE-123: CWE-123: Write-what-where Condition

ADP Enrichment

CVE Program Container

Additional References

References