CVE-2020-28213: CVE-2020-28213

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-28213

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when sending specially crafted requests over Modbus.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

下载代码缺少完整性检查

Source: NVD (National Vulnerability Database)

Vulnerability Title

Schneider Electric Unity Pro 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Schneider Electric Unity Pro是法国施耐德电气（Schneider Electric）公司的一套用于Modicon Premium、Atrium和Quantum PLC系列产品的通用编程、调试和操作软件。 Schneider Electric Unity Pro 存在安全漏洞，该漏洞源于完整性检查漏洞，可能会导致未经授权的命令执行时，通过Modbus发送特别制作的请求。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions)	PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions)	-

II. Public POCs for CVE-2020-28213

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-28213

Please Login to view more intelligence information

New Vulnerabilities

Product: PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions)

Vendor: n/a

Same weakness: CWE-494

V. Comments for CVE-2020-28213

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2020-28213

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-28213

III. Intelligence Information for CVE-2020-28213

New Vulnerabilities

V. Comments for CVE-2020-28213

Leave a comment