HTTP: Schneider Electric IGSS DashBoard.exe Insecure Deserialization
This signature detects attempts to exploit a known vulnerability against Schneider Electric IGSS DashBoard.exe. A successful attack can lead to arbitrary code execution.
Extended Description
A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution when an attacker gets the user to open a malicious file. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).
Affected Products
Schneider-electric custom_reports
References
CVE: CVE-2023-3001
URL: https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-073-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-073-04.pdf https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-164-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-164-02.pdf&_ga=2.193101037.1151811700.1686750396-643358291.1655388168 http://www.zerodayinitiative.com/advisories/ZDI-23-889/
Short Name
HTTP:SCHDR-IGSS-INSCR-DES
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2023-27978 CVE-2023-3001 DashBoard.exe Deserialization Electric IGSS Insecure Schneider
Release Date
04/04/2023
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3633
False Positive
Rarely
Vendors
Schneider-electric