Inclusion of Functionality from Untrusted Control Sphere
CVE-2023-31170
5.9MEDIUM
Key Information:
- Vendor
- CVE Published:
- 31 August 2023
What is CVE-2023-31170?
An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator.
See Instruction Manual Appendix A and Appendix E dated 20230615 for more details.
This issue affects SEL-5030 acSELerator QuickSet Software: through 7.1.3.0.
Affected Version(s)
SEL-5030 acSELerator QuickSet Software Windows 0 <= 7.1.3.0