Title: EcoStruxure™ Control Expert and Unity Pro Write-what-where Condition Vulnerability

Title: EcoStruxure™ Control Expert and Unity Pro Write-what-where Condition Vulnerability

CVE-2020-7560 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions), that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control Expert software.

Learn more about our Web Application Penetration Testing UK.