PT-2020-18513 · Unknown · Pls Management Add-On Module+1

Yoshimasa Obana

Published

2020-05-11

Updated

2021-07-21

CVE-2020-5538

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions PALLET CONTROL versions 6.3 and earlier PALLET CONTROL all versions when used with PLS Management Add-on Module

Description The issue allows authenticated attackers to execute arbitrary code with the SYSTEM privilege on the computer where the software is installed. This can be achieved via unspecified vectors.

Recommendations For PALLET CONTROL versions 6.3 and earlier, update to a version later than 6.3 to resolve the issue. For PALLET CONTROL all versions when used with PLS Management Add-on Module, consider removing or disabling the PLS Management Add-on Module until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-5538

Affected Products

Pallet Control

Pls Management Add-On Module

PT-2020-18513 · Unknown · Pls Management Add-On Module+1

CVE-2020-5538

Related Identifiers

Affected Products

References · 4