Threat Encyclopedia



This indicates an attack attempt to exploit an Out of Bound Write Vulnerability in Schneider Electric IGSS.
This vulnerability is due to an out-of-bounds write when processing Opcode 5 (ONL) messages sent to the IGSSDataServer.exe process. A remote, unauthenticated attacker could exploit this vulnerability by sending a maliciously crafted packet to the target service. Successful exploitation could allow the attacker to potentially execute arbitrary code on the target system in the context of the IGSSDataServer process.

affected-products-logoAffected Products

Schneider Electric IGSS prior to

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

CVE References


Telemetry logoTelemetry