schneider-electric

776 tracked vulnerabilities.

CVE-2021-22787 HIGH
Schneider Electric Modicon M340 BMXP34 < V3.40 & X80 - DoS via Crafted HTTP Request
Feb 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22785 HIGH
Modicon M340 <V3.40 - Info Disclosure
Feb 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22748 HIGH
C-Bus Toolkit <1.15.9, C-Gate Server <2.11.7 - Path Traversal
Feb 11, 2022
CVSS 8.8
EPSS 0.02
CVE-2021-22817 HIGH
Harmony/Magelis iPC Series - Privilege Escalation
Feb 09, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-22827 HIGH
EcoStruxure Power Monitoring Expert <9.0 - RCE
Jan 28, 2022
CVSS 8.8
EPSS 0.01
CVE-2021-22826 HIGH
EcoStruxure Power Monitoring Expert <9.0 - RCE
Jan 28, 2022
CVSS 8.8
EPSS 0.01
CVE-2021-22825 HIGH
AP7xxxx-AP8xxx < V6.9.6-V1.1.0.3 - Privilege Escalation
Jan 28, 2022
CVSS 8.0
EPSS 0.01
CVE-2021-22822 MEDIUM
Schneider Electric EVlink Firmware < 3.4.0.2 - Cross-Site Scripting via Crafted Web Parameters
Jan 28, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-22821 HIGH
EVlink <R8 V3.4.0.2 - Server-Side Request Forgery via Charging Station Parameters
Jan 28, 2022
CVSS 8.6
EPSS 0.01
CVE-2021-22820 CRITICAL
EVlink <R8 V3.4.0.2 - Info Disclosure
Jan 28, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-22819 MEDIUM
Schneider Electric EVlink Firmware < 3.4.0.2 - Clickjacking via Web Interface iframe
Jan 28, 2022
CVSS 4.3
EPSS 0.01
CVE-2021-22818 HIGH
EVlink <R8 V3.4.0.2 - Info Disclosure
Jan 28, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22816 HIGH
Schneider Electric SCADAPack E-Series Firmware < 8.19.1 - Denial of Service via Crafted Modbus Request
Jan 28, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22815 MEDIUM
AP9630/AP9631/AP9635 - Info Disclosure
Jan 28, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-22814 MEDIUM
Schneider Electric NMC 2 <6.9.8 & NMC 3 <1.4.2.1 - Stored XSS via Malicious File Display
Jan 28, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-22813 MEDIUM
AP9630/AP9630CH/AP9630J/AP9631/AP9631CH/AP9631J/AP9635 - XSS
Jan 28, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-22812 MEDIUM
Schneider Electric Network Management Card 2 <6.9.8 & 3 <1.4.2.1 XSS via Malicious URL
Jan 28, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-22811 MEDIUM
Schneider Electric Network Management Card 2 <6.9.8 & 3 <1.4.2.1 - XSS
Jan 28, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-22810 MEDIUM
AP9630/AP9630CH/AP9630J/AP9631/AP9631CH/AP9631J/AP9635 - XSS
Jan 28, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-22809 MEDIUM
Eurotherm by Schneider Electric GUIcon <2.0 - Info Disclosure
Jan 28, 2022
CVSS 5.5
EPSS 0.01
CVE-2021-22808 HIGH
Eurotherm by Schneider Electric GUIcon <2.0 - Use After Free
Jan 28, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-22807 HIGH
Eurotherm by Schneider Electric GUIcon <2.0 Build 683.003 - RCE
Jan 28, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-22799 LOW
Schneider Electric Software Update <2.5.1 - SSRF
Jan 28, 2022
CVSS 3.8
EPSS 0.00
CVE-2021-22725 HIGH
Schneider Electric EVlink Firmware < 3.4.0.2 - Cross-Site Request Forgery via POST Requests
Jan 28, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-22724 HIGH
Schneider Electric EVlink Firmware < 3.4.0.2 - Cross-Site Request Forgery via POST Requests
Jan 28, 2022
CVSS 8.8
EPSS 0.00