schneider-electric

776 tracked vulnerabilities.

CVE-2022-22723 HIGH
Easergy P5 Firmware < 01.401.101 - Buffer Overflow via Network Packet Processing
Feb 04, 2022
CVSS 8.8
EPSS 0.03
CVE-2022-22722 HIGH
Easergy P5 Firmware < 01.401.101 - Use of Hard-coded Credentials
Feb 04, 2022
CVSS 7.5
EPSS 0.02
CVE-2021-22786 HIGH
Modicon M340 BMXP34* < 3.30 - Information Exposure via Modbus TCP
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2021-22797 HIGH
EcoStruxure Control Expert <15.1 & Process Expert <2021 - RCE via Malicious Project File
Apr 13, 2022
CVSS 7.8
EPSS 0.26
CVE-2021-22795 CRITICAL
StruxureWare Data Center Expert < V7.8.1 - Command Injection
Apr 13, 2022
CVSS 9.1
EPSS 0.03
CVE-2021-22794 CRITICAL
StruxureWare Data Center Expert < V7.8.1 - Path Traversal
Apr 13, 2022
CVSS 9.1
EPSS 0.02
CVE-2021-30066 MEDIUM
Belden Tofino Xenon Security Appliance Firmware < 03.2.03 - Signature Verification Bypass
Apr 03, 2022
CVSS 6.8
EPSS 0.00
CVE-2021-30065 HIGH
Schneider Electric ConneXium - Auth Bypass
Apr 03, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-30064 CRITICAL
Schneider Electric ConneXium - Auth Bypass
Apr 03, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-30063 HIGH
Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 <3.23 - DoS
Apr 03, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-30062 HIGH
Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 <03.23 - Auth...
Apr 03, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-30061 MEDIUM
Schneider Electric ConneXium Tofino - Code Execution
Apr 03, 2022
CVSS 6.8
EPSS 0.00
CVE-2021-22783 HIGH
Ritto Wiser Door - Session Hijack via Information Exposure
Mar 09, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-22824 HIGH
Schneider-electric Interactive Graphical Scada System Data Collector < 15.0.0.21320 - Buffer Overflow
Feb 11, 2022
CVSS 7.5
EPSS 0.14
CVE-2021-22823 CRITICAL
IGSS dc.exe <15.0.0.21320 - Missing Authentication
Feb 11, 2022
CVSS 9.1
EPSS 0.21
CVE-2021-22806 HIGH
spaceLYnk <2.6.1, Wiser for KNX <2.6.1, fellerLYnk <2.6.1 - Info Di...
Feb 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22805 CRITICAL
IGSS dc.exe <15.0.0.21243 - Missing Authentication
Feb 11, 2022
CVSS 9.1
EPSS 0.01
CVE-2021-22804 HIGH
IGSS dc.exe <15.0.0.21243 - Info Disclosure
Feb 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22803 CRITICAL
Interactive Graphical SCADA System Data Collector <15.0.0.21243 - RCE
Feb 11, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-22802 CRITICAL
Interactive Graphical SCADA System Data Collector <15.0.0.21243 - RCE
Feb 11, 2022
CVSS 9.8
EPSS 0.20
CVE-2021-22801 CRITICAL
ConneXium Network Manager - Improper Privilege Management leading to Arbitrary Command Execution
Feb 11, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-22800 HIGH
Modicon M218 Logic Controller <5.1.0.6 - DoS
Feb 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22798 HIGH
Conext ComBox Firmware - Insufficiently Protected Credentials
Feb 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22796 HIGH
C-Bus Toolkit <1.15.9, C-Gate Server <2.11.7 - RCE
Feb 11, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-22788 HIGH
Schneider Electric Modicon M340 BMXP34 < 3.40 and Multiple Modicon Modules - Denial of Service via HTTP Request
Feb 11, 2022
CVSS 7.5
EPSS 0.01