← volver
CVE-2022-36126

CVE-2022-36126

CVSS 7.2 HIGHEPSS 2.0%
An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. The ScriptInvoke function allows remote attackers to execute arbitrary code by supplying a Python script.
CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:H/S:U/UI:N
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/sourceincite/randyhttps://srcincite.io/advisories/src-2022-0014/https://support.inductiveautomation.com/hc/en-us/articles/7625759776653