CVE-2020-7485

CVE Database · CVE-2020-7485

CVE-2020-7485

· CRITICALModified

CVSS v3.1

9.8

EPSS

1.81%

Published

Apr 16, 2020

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

**VERSION NOT SUPPORTED WHEN ASSIGNED** A legacy support account in the TriStation software version v4.9.0 and earlier could cause improper access to the TriStation host machine. This was addressed in TriStation version v4.9.1 and v4.10.1 released on May 30, 2013.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products (6)

schneider-electric · tristation_1131vulnerable

microsoft · windows_7

microsoft · windows_nt

microsoft · windows_xp

References (4)

https://us-cert.cisa.gov/ics/advisories/icsa-20-205-01

Third Party AdvisoryUS Government Resource

https://www.se.com/ww/en/download/document/SESB-2020-105-01

Vendor Advisory

https://us-cert.cisa.gov/ics/advisories/icsa-20-205-01

Third Party AdvisoryUS Government Resource

https://www.se.com/ww/en/download/document/SESB-2020-105-01

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs