schneider-electric

776 tracked vulnerabilities.

CVE-2022-0715 CRITICAL
APC Smart-UPS Family - Improper Authentication
Mar 09, 2022
CVSS 9.1
EPSS 0.06
CVE-2022-24321 HIGH
ClearSCADA, EcoStruxure Geo SCADA Expert - DoS
Feb 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-24320 MEDIUM
ClearSCADA, EcoStruxure Geo SCADA Expert - Info Disclosure
Feb 09, 2022
CVSS 5.9
EPSS 0.01
CVE-2022-24319 MEDIUM
ClearSCADA, EcoStruxure Geo SCADA Expert - Info Disclosure
Feb 09, 2022
CVSS 5.9
EPSS 0.01
CVE-2022-24318 HIGH
ClearSCADA, EcoStruxure Geo SCADA Expert - Info Disclosure
Feb 09, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-24317 HIGH
Schneider-electric Interactive Graphical Scada System Data Server < 15.0.0.22020 - Missing Authorization
Feb 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-24316 HIGH
Interactive Graphical SCADA System Data Server < V15.0.0.22020 - In...
Feb 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-24315 HIGH
Interactive Graphical SCADA System Data Server < V15.0.0.22020 - DoS
Feb 09, 2022
CVSS 7.5
EPSS 0.19
CVE-2022-24314 HIGH
Schneider-electric Interactive Graphical Scada System Data Server < 15.0.0.22020 - Out-of-Bounds Read
Feb 09, 2022
CVSS 7.5
EPSS 0.18
CVE-2022-24313 CRITICAL
Schneider-electric Interactive Graphical Scada System Data Server < 15.0.0.22020 - Buffer Overflow
Feb 09, 2022
CVSS 9.8
EPSS 0.45
CVE-2022-24312 CRITICAL
Schneider-electric Interactive Graphical Scada System Data Server < 15.0.0.22020 - Path Traversal
Feb 09, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-24311 CRITICAL
Schneider-electric Interactive Graphical Scada System Data Server < 15.0.0.22020 - Path Traversal
Feb 09, 2022
CVSS 9.8
EPSS 0.04
CVE-2022-24310 CRITICAL
Schneider-electric Interactive Graphical Scada System Data Server < 15.0.0.22020 - Integer Overflow
Feb 09, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-22813 CRITICAL
Schneider Electric Easergy P141-P443 Firmware - Use of Hard-coded Credentials
Feb 09, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-22812 MEDIUM
Schneider Electric spaceLYnk, Wiser for KNX, fellerLYnk < 2.6.2 - Stored Cross-Site Scripting
Feb 09, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-22811 HIGH
Schneider Electric spaceLYnk, Wiser for KNX, fellerLYnk < 2.6.2 - Cross-Site Request Forgery
Feb 09, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-22810 CRITICAL
Schneider Electric spaceLYnk, Wiser for KNX, fellerLYnk <2.6.2 - Auth Brute-Force
Feb 09, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-22809 MEDIUM
Schneider Electric spaceLYnk, Wiser for KNX, fellerLYnk < 2.6.2 - Unauthenticated Touch Configuration Modification
Feb 09, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-22808 HIGH
Schneider-electric Hmibscea53d1edb Firmware < 4.0.0.13 - CSRF
Feb 09, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-22807 HIGH
EcoStruxure EV Charging Expert <SP8 - UI Layer Modification
Feb 09, 2022
CVSS 7.4
EPSS 0.01
CVE-2022-22804 MEDIUM
EcoStruxure Power Monitoring Expert < 2020 - Authenticated Cross-Site Scripting
Feb 04, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-22727 HIGH
EcoStruxure Power Monitoring Expert < 2020 - Unauthenticated Data Exposure and Settings Manipulation via Crafted Link
Feb 04, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-22726 MEDIUM
EcoStruxure Power Monitoring Expert < 2020 - Authenticated Arbitrary File Read
Feb 04, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22725 HIGH
Easergy P3 Firmware < 30.205 - Buffer Overflow via Network Packet Processing
Feb 04, 2022
CVSS 8.8
EPSS 0.03
CVE-2022-22724 HIGH
Modicon M340 BMXP34 - Denial of Service via TCP RST/FIN Packet Flood
Feb 04, 2022
CVSS 7.5
EPSS 0.01