schneider-electric

776 tracked vulnerabilities.

CVE-2021-22714 CRITICAL
PowerLogic ION7400-ION9000 - Buffer Overflow
Mar 11, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-22713 HIGH
PowerLogic ION Series - Denial of Service via Memory Buffer Overflow
Mar 11, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-22712 HIGH
Interactive Graphical SCADA System - Memory Corruption
Mar 11, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-22711 HIGH
IGSS Definition <15.0.0.21041 - Memory Corruption
Mar 11, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-22710 HIGH
Interactive Graphical SCADA System - Memory Corruption
Mar 11, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-22709 HIGH
Interactive Graphical SCADA System 15.0.0.21041 - Memory Corruption
Mar 11, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-22703 HIGH
Schneider Electric PowerLogic ION and PM8000 Firmware - Cleartext Transmission of Sensitive Information
Feb 19, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-22702 HIGH
PowerLogic ION/PM8000 Cleartext Transmission of Sensitive Information via Telnet
Feb 19, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-22701 MEDIUM
PowerLogic - Cross-Site Request Forgery
Feb 19, 2021
CVSS 4.5
EPSS 0.00
CVE-2021-22698 HIGH
EcoStruxure Power Build - Rapsody < V2.1.13 - Buffer Overflow
Jan 26, 2021
CVSS 7.8
EPSS 0.04
CVE-2021-22697 HIGH
EcoStruxure Power Build - Rapsody < V2.1.13 - Use After Free
Jan 26, 2021
CVSS 7.8
EPSS 0.03
CVE-2020-25184 HIGH
Schneider-electric Easergy T300 Firmware - Information Disclosure
Mar 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2020-25182 MEDIUM
Schneider-electric Easergy T300 Firmware - Uncontrolled Search Path
Mar 18, 2022
CVSS 6.7
EPSS 0.00
CVE-2020-25180 MEDIUM
Schneider-electric Easergy T300 Firmware - Information Disclosure
Mar 18, 2022
CVSS 5.3
EPSS 0.01
CVE-2020-25178 HIGH
Schneider-electric Easergy T300 Firmware - Cleartext Transmission
Mar 18, 2022
CVSS 7.5
EPSS 0.02
CVE-2020-25176 CRITICAL
Schneider-electric Easergy T300 Firmware < 2.7.1 - Path Traversal
Mar 18, 2022
CVSS 9.1
EPSS 0.06
CVE-2020-7534 HIGH
Schneider Electric Modicon M340 BMXP342020 Firmware - Cross-Site Request Forgery
Feb 04, 2022
CVSS 8.8
EPSS 0.00
CVE-2020-28221 CRITICAL
EcoStruxure Operator Terminal Expert and Pro-face BLUE - Remote Code Execution via Ethernet Download Feature
Jan 26, 2021
CVSS 9.8
EPSS 0.02
CVE-2020-7560 HIGH
EcoStruxure Control Expert/Unity Pro - Code Injection
Dec 11, 2020
CVSS 8.6
EPSS 0.01
CVE-2020-7549 MEDIUM
Modicon M340 and Legacy Modicon Firmware - Denial of Service via Crafted HTTP Requests
Dec 11, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-7543 HIGH
Modicon M580 and M340 Firmware < 3.20 - Denial of Service via Crafted Modbus Read Physical Memory Request
Dec 11, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-7542 HIGH
Modicon M580 and M340 Firmware < 3.20 - Denial of Service via Crafted Modbus Read Physical Memory Request
Dec 11, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-7541 MEDIUM
Schneider Electric Modicon M340 - Unauthenticated Sensitive Data Exposure
Dec 11, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-7540 CRITICAL
Modicon M340 BMXP341000 Firmware < 3.30 - Unauthenticated Command Execution via HTTP Requests
Dec 11, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-7539 HIGH
Modicon M340 BMXP34 Firmware < 3.30 - Denial of Service via HTTP Packet
Dec 11, 2020
CVSS 7.5
EPSS 0.01