CVE-2020-7485
Summary
| CVE | CVE-2020-7485 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-04-16 19:15:00 UTC |
| Updated | 2023-03-01 16:40:00 UTC |
| Description | **VERSION NOT SUPPORTED WHEN ASSIGNED** A legacy support account in the TriStation software version v4.9.0 and earlier could cause improper access to the TriStation host machine. This was addressed in TriStation version v4.9.1 and v4.10.1 released on May 30, 2013.1 |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Microsoft | Windows 7 | - | All | All | All |
| Operating System | Microsoft | Windows 7 | - | All | All | All |
| Operating System | Microsoft | Windows Nt | - | All | All | All |
| Operating System | Microsoft | Windows Nt | - | All | All | All |
| Operating System | Microsoft | Windows Xp | - | All | All | All |
| Operating System | Microsoft | Windows Xp | - | All | All | All |
| Application | Schneider-electric | Tristation 1131 | 4.10.0 | All | All | All |
| Application | Schneider-electric | Tristation 1131 | 4.12.0 | All | All | All |
| Application | Schneider-electric | Tristation 1131 | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Schneider Electric Triconex TriStation and Tricon Communication Module | CISA | MISC | us-cert.cisa.gov | |
| Security Bulletin - Legacy Triconex Product Vulnerabilities (V2.1) | Schneider Electric | MISC | www.se.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 591256 Schneider Electric Tricon Communication Module Multiple Vulnerabilities (ICSA-20-205-01, SESB-2020-105-01)