cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-28221,https://securityvulnerability.io/vulnerability/CVE-2020-28221,Improper Input Validation in EcoStruxure™ Operator Terminal Expert by Schneider Electric,An improper input validation vulnerability exists in EcoStruxure™ Operator Terminal Expert and Pro-face BLUE. This flaw could allow an attacker to execute arbitrary code on the HMI when the Ethernet Download feature is enabled. Users are advised to disable this feature and implement security measures to protect their systems.,Schneider Electric,"Ecostruxure™ Operator Terminal Expert 3.1 Service Pack 1a And Prior Running On Harmony Hmis Hmist6 Series, Hmig3u In Hmigtu Series, Hmisto Series And Pro-face Blue 3.1 Service Pack 1a And Prior Running On Pro-face Hmis: St6000 Series, Sp-5b41 In Sp5000 Series, Gp4100 Series",9.8,CRITICAL,0.0040799998678267,false,,false,false,false,,,false,false,,2021-01-26T18:15:00.000Z,0