{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-15T13:41:59.481","vulnerabilities":[{"cve":{"id":"CVE-2020-10639","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2020-04-15T17:15:14.437","lastModified":"2024-11-21T04:55:45.157","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Eaton HMiSoft VU3 (HMIVU3 runtime not impacted), Version 3.00.23 and prior, however, the HMIVU runtimes are not impacted by these issues. A specially crafted input file could cause a buffer overflow when loaded by the affected product."},{"lang":"es","value":"Eaton HMiSoft VU3 (el tiempo de ejecución de HMIVU3 no está impactado), versiones 3.00.23 y anteriores, sin embargo, los tiempos de ejecución de HMIVU no están impactados por estos problemas. Un archivo de entrada especialmente diseñado podría causar un desbordamiento del búfer cuando es cargado por parte del producto afectado."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1\/AV:L\/AC:L\/PR:N\/UI:R\/S:U\/C:H\/I:H\/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N\/AC:M\/Au:N\/C:P\/I:P\/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-120"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:eaton:hmisoft_vu3_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"3.00.23","matchCriteriaId":"108C9413-91CC-40C6-9452-1002BCAD02FB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:eaton:hmisoft_vu3:-:*:*:*:*:*:*:*","matchCriteriaId":"7405598C-CEEE-420C-AC65-67E23463964F"}]}]}],"references":[{"url":"https:\/\/www.us-cert.gov\/ics\/advisories\/icsa-20-105-01","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","US Government Resource"]},{"url":"https:\/\/www.us-cert.gov\/ics\/advisories\/icsa-20-105-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}}]}