Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / schneider-electric

schneider-electric

765 tracked vulnerabilities.

CVE-2020-7538 HIGH

EcoStruxure Control Expert - Denial of Service via Modbus Request

CVE-2020-28213 HIGH

EcoStruxure Control Expert - Unauthorized Command Execution via Modbus Requests

CVE-2020-28212 CRITICAL

EcoStruxure Control Expert - Unauthenticated Brute Force Attack via Modbus

CVE-2020-28211 HIGH

EcoStruxure Control Expert - Incorrect Authorization via Debugger Memory Overwrite

CVE-2020-28209 HIGH

EcoStruxure Building Operation <3.1 - Privilege Escalation

CVE-2020-28210 MEDIUM

EcoStruxure Building Operation 2.0-3.1 - Cross-Site Scripting

CVE-2020-7564 HIGH

Modicon M340, Quantum and Premium Legacy - Classic Buffer Overflow via FTP File Upload

CVE-2020-7563 HIGH

Modicon M340, Quantum and Premium Legacy - Out-of-bounds Write via FTP File Upload

CVE-2020-7562 HIGH

Modicon M340, Quantum, and Premium Legacy - Out-of-bounds Read via FTP File Upload

CVE-2020-7532 HIGH

SCADAPack x70 Security Administrator < 1.2.0 - Remote Code Execution via Malicious .SDB File

CVE-2020-7531 HIGH

SCADAPack 7x Remote Connect < 3.6.3.574 - Unauthenticated Arbitrary Code Execution via Executable Placement

CVE-2020-7530 HIGH

SCADAPack 7x Remote Connect < 3.6.3.574 - Improper Authorization

CVE-2020-7529 MEDIUM

SCADAPack 7x Remote Connect < 3.6.3.574 - Path Traversal via Crafted .RCZ File

CVE-2020-7528 HIGH

SCADAPack 7x Remote Connect < 3.6.3.574 - Remote Code Execution via Malicious .PRJ File

CVE-2020-7527 HIGH

SoMove < 2.8.1 - Incorrect Default Permissions

CVE-2020-7525 HIGH

Schneider Electric spaceLYnk and Wiser for KNX Firmware < 2.5.1 - Unauthenticated Password Brute-Force

CVE-2020-7524 HIGH

Modicon M218 Firmware < 5.0.0.7 - Denial of Service via Crafted IPv4 Packet

CVE-2020-7523 HIGH

Schneider Electric Modbus Serial Driver - Local Privilege Escalation via Service Invocation

CVE-2020-7522 CRITICAL

APC Easy UPS On-Line Software <= 2.0 - Path Traversal via SoundUploadServlet

CVE-2020-7521 CRITICAL

APC Easy UPS On-Line Software < 2.0 - Path Traversal via FileUploadServlet

CVE-2020-7520 MEDIUM

Schneider Electric Software Update < 2.4.0 - Open Redirect via Windows Registry Key Manipulation

CVE-2020-7519 HIGH

Easergy Builder <1.4.7.2 - Info Disclosure

CVE-2020-7518 HIGH

Easergy Builder < 1.4.7.2 - Unauthenticated Project Configuration File Modification

CVE-2020-7517 MEDIUM

Easergy Builder < 1.4.7.2 - Cleartext Storage of Sensitive Information

CVE-2020-7516 HIGH

Easergy Builder < 1.4.7.2 - Cleartext Storage of Sensitive Information in Memory

Previous Page 16 of 31 Next

Products

struxureware_data_center_expert 48 interactive_graphical_scada_system 43 modicon_m580_firmware 41 modicon_m340_firmware 39 modicon_m340_bmxp342020_firmware 32 modicon_m340_bmxp3420302_firmware 28 modicon_m340_bmxp341000_firmware 27 ecostruxure_control_expert 26 modicon_m340_bmxp342000_firmware 25 modicon_m340_bmxp3420102_firmware 25 modicon_quantum_firmware 25 easergy_t300_firmware 24 u.motion_builder 24 modicon_premium_firmware 23 140cpu65150_firmware 20 evlink_city_evc1s22p4_firmware 18 evlink_city_evc1s7p4_firmware 18 evlink_parking_evf2_firmware 18 evlink_parking_evw2_firmware 18 evlink_smart_wallbox_evb1a_firmware 18 modicon_m340_bmxp3420102cl_firmware 17 spacelynk_firmware 17 modicon_m221_firmware 16 modicon_m340_bmxp342020h_firmware 16 modicon_m340_bmxp3420302cl_firmware 16 modicon_m340_bmxp3420302h_firmware 16 ibp1110-1er_firmware 15 ibp219-1er_firmware 15 ibp319-1er_firmware 15 ibp519-1er_firmware 15

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy