Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / schneider-electric

schneider-electric

765 tracked vulnerabilities.

CVE-2020-7490 HIGH

Vijeo Designer Basic < 1.1 HotFix 15 and Vijeo Designer < 6.9 SP9 - Untrusted Search Path

CVE-2020-7489 CRITICAL

EcoStruxure Machine Expert and SoMachine Basic - DLL Substitution via Improper Neutralization

CVE-2020-7488 HIGH

EcoStruxure Machine Expert - Cleartext Transmission of Sensitive Information

CVE-2020-7487 CRITICAL

EcoStruxure Machine Expert - Insufficient Verification of Data Authenticity

CVE-2020-7486 HIGH

Schneider Electric Triconex TCM 4351/4352 Firmware v10.4.x and v10.3.x - Denial of Service via High Network Load

CVE-2020-7485 CRITICAL

TriStation <4.9.0 - Privilege Escalation

CVE-2020-7484 HIGH

Schneider Electric TriStation 1131 1.0-4.13.0 - Denial of Service via Password Feature

CVE-2020-7483 HIGH

Schneider Electric TriStation 1131 < 4.12.0 - Cleartext Transmission of Sensitive Information via Password Feature

CVE-2020-7482 MEDIUM

Andover Continuum - Reflected Cross-Site Scripting via Web Server

CVE-2020-7481 MEDIUM

Andover Continuum - Cross-Site Scripting via Web Server

CVE-2020-7480 CRITICAL

Andover Continuum - Code Injection via XML Processing

CVE-2020-7479 HIGH

Schneider-electric Interactive Graphi... - Missing Authentication

CVE-2020-7478 HIGH

Interactive Graphical SCADA System < 14.0.0.20009 - Unauthenticated Path Traversal via IGSS Update Service

CVE-2020-7477 HIGH

Schneider Electric Quantum Ethernet Modules - Denial of Service via Modbus Command

CVE-2020-7476 HIGH

Schneider Electric ULTI ZigBee Installation Toolkit < 1.0.1 - Untrusted Search Path

CVE-2020-7475 CRITICAL

EcoStruxure Control Expert <14.1, Unity Pro, Modicon M340 <3.20, M580 <3.10 - DLL Injection

CVE-2020-7474 HIGH

ProSoft Configurator < 1.002 - Untrusted Code Execution via DLL Search Path

CVE-2019-6834 HIGH

Schneider Electric SESU <2.3.0 - Code Injection

CVE-2019-6859 HIGH

Modicon Controllers - Info Disclosure

CVE-2019-6858 HIGH

MSX Configurator <V1.0.8.1 - Privilege Escalation

CVE-2019-6857 HIGH

Modicon M580 < 2.80, M340 < 3.01, Quantum/TSX H/P 57 < 3.20 - Denial of Service via Modbus TCP Memory Block Read

CVE-2019-6856 HIGH

Modicon M580, M340, Quantum, Premium < 2.80/3.01/3.20 - Denial of Service via Modbus TCP Memory Block Write

CVE-2019-6855 HIGH

EcoStruxure Control Expert <14.1 - Auth Bypass

CVE-2019-6854 HIGH

EcoStruxure Geo SCADA Expert <1 Jan 2019 - Improper Authentication

CVE-2019-6853 MEDIUM

Andover Continuum - Cross-Site Scripting via Web Server

Previous Page 18 of 31 Next

Products

struxureware_data_center_expert 48 interactive_graphical_scada_system 43 modicon_m580_firmware 41 modicon_m340_firmware 39 modicon_m340_bmxp342020_firmware 32 modicon_m340_bmxp3420302_firmware 28 modicon_m340_bmxp341000_firmware 27 ecostruxure_control_expert 26 modicon_m340_bmxp342000_firmware 25 modicon_m340_bmxp3420102_firmware 25 modicon_quantum_firmware 25 easergy_t300_firmware 24 u.motion_builder 24 modicon_premium_firmware 23 140cpu65150_firmware 20 evlink_city_evc1s22p4_firmware 18 evlink_city_evc1s7p4_firmware 18 evlink_parking_evf2_firmware 18 evlink_parking_evw2_firmware 18 evlink_smart_wallbox_evb1a_firmware 18 modicon_m340_bmxp3420102cl_firmware 17 spacelynk_firmware 17 modicon_m221_firmware 16 modicon_m340_bmxp342020h_firmware 16 modicon_m340_bmxp3420302cl_firmware 16 modicon_m340_bmxp3420302h_firmware 16 ibp1110-1er_firmware 15 ibp219-1er_firmware 15 ibp319-1er_firmware 15 ibp519-1er_firmware 15

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy