CVE-2020-7528 – A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Co …

Vuln ID: CVE-2020-7528

Published:  2020-09-16  16:15:15Z

Description: A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which could allow arbitrary code execution when an attacker builds a custom .PRJ file containing a malicious serialized buffer.

Source: NVD.NIST.GOV