schneider-electric

765 tracked vulnerabilities.

CVE-2020-7515 HIGH
Easergy Builder < 1.4.7.2 - Use of Hard-coded Cryptographic Key
Jul 23, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-7514 HIGH
Easergy Builder < 1.4.7.2 - Use of a Broken or Risky Cryptographic Algorithm
Jul 23, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-7491 HIGH
Tricon system <10.5.3 - Info Disclosure
Jul 23, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7513 HIGH
Easergy T300 Firmware <= 1.5.2 - Cleartext Storage of Sensitive Information
Jun 16, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7512 CRITICAL
Easergy T300 <1.5.2 - Info Disclosure
Jun 16, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-7511 HIGH
Schneider-electric Easergy T300 Firmware < 1.5.2 - Broken Cryptographic Algorithm
Jun 16, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7510 HIGH
Easergy T300 Firmware <= 1.5.2 - Exposure of Sensitive Information via Private Key Disclosure
Jun 16, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7509 HIGH
Schneider-electric Easergy T300 Firmware < 1.5.2 - Improper Privilege Management
Jun 16, 2020
CVSS 7.2
EPSS 0.00
CVE-2020-7508 CRITICAL
Easergy T300 Firmware <= 1.5.2 - Unauthenticated Brute Force Attack
Jun 16, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-7507 HIGH
Easergy T300 Firmware < 1.5.2 - Denial of Service via Repeated Login Attempts
Jun 16, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7506 HIGH
Easergy T300 Firmware <= 1.5.2 - Information Exposure via Firmware Archive Handling
Jun 16, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7505 HIGH
Schneider-electric Easergy T300 Firmware < 1.5.2 - Download Without Integrity Check
Jun 16, 2020
CVSS 7.2
EPSS 0.00
CVE-2020-7504 MEDIUM
Easergy T300 Firmware < 1.5.2 - Denial of Service via Crafted Network Packets
Jun 16, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-7503 HIGH
Easergy T300 Firmware < 1.5.2 - Cross-Site Request Forgery via Intercepted XSRF Token
Jun 16, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-7502 HIGH
Modicon M218 Firmware < 4.3 - Denial of Service via Crafted TCP/IP Packets
Jun 16, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7501 HIGH
Vijeo Designer Basic < 1.1 HotFix 16 and Vijeo Designer < 6.2 SP9 - Use of Hard-coded Credentials
Jun 16, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-7500 CRITICAL
Schneider Electric U.motion Servers and Touch Panels < 1.4.2 - SQL Injection
Jun 16, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-7499 MEDIUM
Schneider Electric U.motion Servers and Touch Panels < 1.4.2 - Incorrect Authorization
Jun 16, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-7498 CRITICAL
Unity Loader and OS Loader - Use of Hard-coded Credentials
Jun 16, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-7497 CRITICAL
EcoStruxure Operator Terminal Expert <= 3.1 Service Pack 1 - Path Traversal
Jun 16, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-7495 MEDIUM
EcoStruxure Operator Terminal Expert <= 3.1 Service Pack 1 - Path Traversal via Project File Extraction
Jun 16, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-7494 HIGH
EcoStruxure Operator Terminal Expert <= 3.1 Service Pack 1 - Path Traversal and Remote Code Execution via Project File
Jun 16, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-7493 HIGH
EcoStruxure Operator Terminal Expert <= 3.1 Service Pack 1 - SQL Injection via Project File
Jun 16, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-7492 MEDIUM
GP-Pro EX <4.09.100 - Info Disclosure
Jun 16, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-10626 HIGH
Fazecast jSerialComm <2.2.2 - Code Injection
May 14, 2020
CVSS 7.8
EPSS 0.00
Products
struxureware_data_center_expert 48 interactive_graphical_scada_system 43 modicon_m580_firmware 41 modicon_m340_firmware 39 modicon_m340_bmxp342020_firmware 32 modicon_m340_bmxp3420302_firmware 28 modicon_m340_bmxp341000_firmware 27 ecostruxure_control_expert 26 modicon_m340_bmxp342000_firmware 25 modicon_m340_bmxp3420102_firmware 25 modicon_quantum_firmware 25 easergy_t300_firmware 24 u.motion_builder 24 modicon_premium_firmware 23 140cpu65150_firmware 20 evlink_city_evc1s22p4_firmware 18 evlink_city_evc1s7p4_firmware 18 evlink_parking_evf2_firmware 18 evlink_parking_evw2_firmware 18 evlink_smart_wallbox_evb1a_firmware 18 modicon_m340_bmxp3420102cl_firmware 17 spacelynk_firmware 17 modicon_m221_firmware 16 modicon_m340_bmxp342020h_firmware 16 modicon_m340_bmxp3420302cl_firmware 16 modicon_m340_bmxp3420302h_firmware 16 ibp1110-1er_firmware 15 ibp219-1er_firmware 15 ibp319-1er_firmware 15 ibp519-1er_firmware 15
Quick Filters
Critical CVEs With Exploits In CISA KEV