CVE-2023-27980
Schneider Electric IGSS IGSSdataServer Exposed Dangerous Function Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow the creation of a malicious report file in the IGSS project report directory, this could lead to remote code execution when a victim eventually opens the report. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior)
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric IGSS. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the IGSSdataServer process, which listens on TCP port 12401 by default. The issue results from the exposure of a dangerous function. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current user.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-03-09 CVE Reserved
- 2023-03-16 CVE Published
- 2024-08-02 CVE Updated
- 2024-10-26 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-306: Missing Authentication for Critical Function
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-073-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-073-04.pdf | 2023-03-24 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Schneider-electric Search vendor "Schneider-electric" | Custom Reports Search vendor "Schneider-electric" for product "Custom Reports" | <= 16.0.0.23040 Search vendor "Schneider-electric" for product "Custom Reports" and version " <= 16.0.0.23040" | - |
Affected
| ||||||
Schneider-electric Search vendor "Schneider-electric" | Igss Dashboard Search vendor "Schneider-electric" for product "Igss Dashboard" | <= 16.0.0.23040 Search vendor "Schneider-electric" for product "Igss Dashboard" and version " <= 16.0.0.23040" | - |
Affected
| ||||||
Schneider-electric Search vendor "Schneider-electric" | Igss Data Server Search vendor "Schneider-electric" for product "Igss Data Server" | <= 16.0.0.23040 Search vendor "Schneider-electric" for product "Igss Data Server" and version " <= 16.0.0.23040" | - |
Affected
|