schneider-electric

776 tracked vulnerabilities.

CVE-2018-7843 HIGH
Modicon M580, M340, Quantum, and Premium Firmware - Denial of Service via Invalid Modbus Memory Block Read
May 22, 2019
CVSS 7.5
EPSS 0.03
CVE-2018-7842 CRITICAL
Modicon M580, M340, Quantum, and Premium Firmware - Authentication Bypass via Modbus Parameter Brute Force
May 22, 2019
CVSS 9.8
EPSS 0.35
CVE-2018-7841 CRITICAL KEVNUCLEI
U.motion Builder <1.3.4 - SQL Injection
May 22, 2019
CVSS 9.8
EPSS 0.72
CVE-2018-7834 MEDIUM
TSXETG100 Firmware - Stored Cross-Site Scripting via Crafted URL
May 22, 2019
CVSS 6.1
EPSS 0.01
CVE-2018-7829 HIGH
Pelco Sarix Enhanced Camera/Spectra Enhanced PTZ Camera - Code Inje...
May 22, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-7828 HIGH
Schneider Electric 1st Gen Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera - Cross-Site Request Forgery
May 22, 2019
CVSS 8.8
EPSS 0.01
CVE-2018-7827 MEDIUM
Pelco Sarix Enhanced <1st Gen. - XSS
May 22, 2019
CVSS 5.4
EPSS 0.01
CVE-2018-7826 HIGH
Pelco Sarix Enhanced Camera - Command Injection
May 22, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-7825 HIGH
PelcoSarix Enhanced Camera - Command Injection
May 22, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-7824 MEDIUM
Schneider Electric Modbus Serial Driver - Privilege Escalation
May 22, 2019
CVSS 4.9
EPSS 0.01
CVE-2018-7823 MEDIUM
SoMachine Basic and Modicon M221 < 1.10.0.0 - Remote Code Execution via Crafted Ethernet Message
May 22, 2019
CVSS 5.3
EPSS 0.01
CVE-2018-7822 MEDIUM
SoMachine Basic and Modicon M221 < 1.10.0.0 - Unauthorized Access via Incorrect Default Permissions
May 22, 2019
CVSS 5.5
EPSS 0.00
CVE-2018-7821 HIGH
SoMachine Basic and Modicon M221 < 1.10.0.0 - Denial of Service via Ethernet Flooding
May 22, 2019
CVSS 7.5
EPSS 0.01
CVE-2018-7816 MEDIUM
Pelco Sarix Enhanced Camera - Privilege Escalation
May 22, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-7788 MEDIUM
Modicon Quantum Firmware < 2.40 - Denial of Service via Telnet Connection
May 22, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-7839 MEDIUM
IIoT Monitor <3.1.38 - Info Disclosure
Feb 06, 2019
CVSS 5.5
EPSS 0.00
CVE-2018-7817 HIGH
Zelio Soft 2 < 5.1 - Remote Code Execution via Crafted Project File
Feb 06, 2019
CVSS 7.8
EPSS 0.03
CVE-2018-7815 HIGH
Eurotherm by Schneider Electric GUIcon V2.0 - RCE
Feb 06, 2019
CVSS 7.8
EPSS 0.01
CVE-2018-7814 HIGH
Eurotherm by Schneider Electric GUIcon V2.0 - Buffer Overflow
Feb 06, 2019
CVSS 7.8
EPSS 0.01
CVE-2018-7813 HIGH
Eurotherm by Schneider Electric GUIcon V2.0 - RCE
Feb 06, 2019
CVSS 7.8
EPSS 0.01
CVE-2018-7837 HIGH
Schneider Electric IIoT Monitor 3.1.38 - XML External Entity Injection
Dec 24, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-7836 CRITICAL
IIoT Monitor 3.1.38 - Code Injection
Dec 24, 2018
CVSS 9.8
EPSS 0.32
CVE-2018-7835 HIGH
IIoT Monitor <3.1.38 - Path Traversal
Dec 24, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-7832 HIGH
Pro-Face GP-Pro EX <4.08 - Code Injection
Dec 24, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-7802 HIGH
EVLink Parking <3.2.0-12_v1 - SQL Injection
Dec 24, 2018
CVSS 8.8
EPSS 0.02