Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier allows remote attackers to bypass intended access restrictions and execute arbitrary functions via a modified parameter.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-16-147-01 | Third Party Advisory US Government Resource |
Configurations
Information
Published : 2016-05-30 18:59
Updated : 2016-06-07 07:25
NVD link : CVE-2016-4502
Mitre link : CVE-2016-4502
JSON object : View
CWE
CWE-284
Improper Access Control
Products Affected
envirosys
- esc_8832_data_controller