Vulnerability Description
**VERSION NOT SUPPORTED WHEN ASSIGNED** A vulnerability with the former 'password' feature could allow a denial of service attack if the user is not following documented guidelines pertaining to dedicated TriStation connection and key-switch protection. This vulnerability was discovered and remediated in versions v4.9.1 and v4.10.1 on May 30, 2013. This feature is not present in version v4.9.1 and v4.10.1 through current. Therefore, the vulnerability is not present in these versions.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schneider-Electric | Tristation 1131 | >= 1.0, < 4.13.0 |
| Microsoft | Windows 7 | - |
| Microsoft | Windows Nt | - |
| Microsoft | Windows Xp | - |
References
- https://us-cert.cisa.gov/ics/advisories/icsa-20-205-01Third Party AdvisoryUS Government Resource
- https://www.se.com/ww/en/download/document/SESB-2020-105-01Vendor Advisory
- https://us-cert.cisa.gov/ics/advisories/icsa-20-205-01Third Party AdvisoryUS Government Resource
- https://www.se.com/ww/en/download/document/SESB-2020-105-01Vendor Advisory
FAQ
What is CVE-2020-7484?
CVE-2020-7484 is a vulnerability with a CVSS score of 7.5 (HIGH). **VERSION NOT SUPPORTED WHEN ASSIGNED** A vulnerability with the former 'password' feature could allow a denial of service attack if the user is not following documented guidelines pertaining to dedic...
How severe is CVE-2020-7484?
CVE-2020-7484 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-7484?
Check the references section above for vendor advisories and patch information. Affected products include: Schneider-Electric Tristation 1131, Microsoft Windows 7, Microsoft Windows Nt, Microsoft Windows Xp.