An Incomplete Filtering of Special Elements vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet…
SEL·CWE-791·Published 2023-08-31
An Incomplete Filtering of Special Elements vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5030 acSELerator QuickSet Software: through 7.1.3.0.
An Incomplete Filtering of Special Elements vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5030 acSELerator QuickSet Software: through 7.1.3.0.
Una vulnerabilidad de filtrado incompleto de elementos especiales en el software SEL-5030 acSELerator QuickSet de Schweitzer Engineering Laboratories podría permitir a un atacante incrustar instrucciones que podrían ser ejecutadas por un operador de dispositivo autorizado. Consulte el Apéndice A y el Apéndice E del Manual de Instrucciones con fecha 20230615 para más detalles. Este problema afecta al software SEL-5030 acSELerator QuickSet: hasta la versión 7.1.3.0.
| Version | Type | Source | Base | Exp | Impact | Vector |
|---|---|---|---|---|---|---|
| 3.1 | Primary | NVD | 7.4 | 2.8 | 4.0 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N |
| 3.1 | Primary | cve.org | 5.9 | — | — | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N |
| 3.1 | Secondary | NVD | 5.9 | 1.5 | 4.0 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N |