CVE-2023-0595

Name: CVE-2023-0595
Creator: NVD / NIST
Published: 2023-02-24T11:15:10.643+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 5.3/10EPSS 0.42%

Last modified Jun 17, 2026

CVE-2023-0595 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. A CWE-117: Improper Output Neutralization for Logs vulnerability exists that could cause the misinterpretation of log files when malicious packets are sent to the Geo SCADA server's database web port (default 443). Affected products: EcoStruxure Geo SCADA Expert 2019, EcoStruxure Geo SCADA Expert 2020, EcoStruxure Geo SCADA Expert 2021(All Versions prior to October 2022), ClearSCADA (All Versions) . EPSS estimates a 0.42% chance of exploitation in the next 30 days.

Description

A CWE-117: Improper Output Neutralization for Logs vulnerability exists that could cause the misinterpretation of log files when malicious packets are sent to the Geo SCADA server's database web port (default 443). Affected products: EcoStruxure Geo SCADA Expert 2019, EcoStruxure Geo SCADA Expert 2020, EcoStruxure Geo SCADA Expert 2021(All Versions prior to October 2022), ClearSCADA (All Versions)

Metrics

CVSS 3.1

5.3/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS Probability

0.42%

33.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Schneider-Electric	Clearscada	All versions
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	All versions
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7268.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7322.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7429.2
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7457.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7488.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7522.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7545.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7578.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7613.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7641.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7690.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7714.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7742.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7777.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7808.2
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7840.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7875.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7896.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7936.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.7980.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8015.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8108.2
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8122.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8155.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8172.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8197.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8220.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2019	81.8267.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	All versions
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7551.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7578.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7613.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7641.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7692.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7717.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7742.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7787.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7809.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7840.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7875.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7913.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7936.2
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.7980.2
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.8017.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.8108.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.8122.2
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.8155.1
Schneider-Electric	Ecostruxure Geo Scada Expert 2020	83.8181.1

Showing 50 of 62 affected configurations. See NVD for the full list.

References

Timeline

Published: Feb 24, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2023-0595?

How severe is CVE-2023-0595?

CVE-2023-0595 has a CVSS score of 5.3/10 (MEDIUM severity). The EPSS model estimates a 0.42% probability of exploitation in the next 30 days.

How do I fix CVE-2023-0595?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-0595?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST