CVE-2020-28213

A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when sending specially crafted requests over Modbus.
References
Configurations

Configuration 1

cpe:2.3:a:schneider-electric:ecostruxure_control_expert:*:*:*:*:*:*:*:*

Information

Published : 2020-11-19 10:15

Updated : 2022-01-31 07:33


NVD link : CVE-2020-28213

Mitre link : CVE-2020-28213

Products Affected
No products.
CWE
CWE-494

Download of Code Without Integrity Check