Schneider Electric Schneider Electric

  1. Vendors
  2. Schneider Electric
Do you want an email whenever new security vulnerabilities are reported in any Schneider Electric product?

Products by Schneider Electric Sorted by Most Security Vulnerabilities since 2018

Schneider Electric Struxureware Data Center Expert47 vulnerabilities

Schneider Electric Interactive Graphical Scada System40 vulnerabilities

Schneider Electric Ecostruxure Control Expert23 vulnerabilities

Schneider Electric U Motion Builder17 vulnerabilities

Schneider Electric Igss Data Server16 vulnerabilities

Schneider Electric Ecostruxure Power Monitoring Expert13 vulnerabilities

Schneider Electric Ecostruxure Process Expert11 vulnerabilities

Schneider Electric Ecostruxure Geo Scada Expert 20199 vulnerabilities

Schneider Electric Ecostruxure Geo Scada Expert 20209 vulnerabilities

Schneider Electric Igss Dashboard9 vulnerabilities

Schneider Electric C Bus Toolkit8 vulnerabilities

Schneider Electric Custom Reports8 vulnerabilities

Schneider Electric Interactive Graphical Scada System Data Server8 vulnerabilities

Schneider Electric Pro Face Blue7 vulnerabilities

Schneider Electric Clearscada7 vulnerabilities

Schneider Electric Ecostruxure Operator Terminal Expert7 vulnerabilities

Schneider Electric Guicon6 vulnerabilities

Schneider Electric Interactive Graphical Scada System Data Collector6 vulnerabilities

Schneider Electric Remoteconnect5 vulnerabilities

Schneider Electric Somachine Basic5 vulnerabilities

Schneider Electric Ecostruxure Foxboro Dcs Control Core Services5 vulnerabilities

Schneider Electric Somachine5 vulnerabilities

Schneider Electric Webreports5 vulnerabilities

Schneider Electric Modicon M340 Bmxp3420205 vulnerabilities

Schneider Electric Modicon M340 Bmxp3420305 vulnerabilities

Schneider Electric Modicon Mc80 Bmkc80203104 vulnerabilities

Schneider Electric Modicon Quantum 140cpu651604 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 454m4 vulnerabilities

Schneider Electric Modicon Momentum 171cbu980904 vulnerabilities

Schneider Electric Plc Simulator Ecostruxure Process Expert4 vulnerabilities

Schneider Electric Modicon Quantum 140cpu65160c4 vulnerabilities

Schneider Electric Modicon Mc80 Bmkc80203014 vulnerabilities

Schneider Electric Proface Gp Pro Ex Ex Ed4 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 554m4 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 2834m4 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 1634m4 vulnerabilities

Schneider Electric Modicon Quantum 140cpu65150c4 vulnerabilities

Schneider Electric Plc Simulator Ecostruxure Control Expert4 vulnerabilities

Schneider Electric Modicon Momentum 171cbu780904 vulnerabilities

Schneider Electric Proface Gp Pro Ex Pfxexedv4 vulnerabilities

Schneider Electric Data Center Expert4 vulnerabilities

Schneider Electric Modicon Momentum 171cbu980914 vulnerabilities

Schneider Electric Modicon Mc80 Bmkc80303114 vulnerabilities

Schneider Electric Modicon Quantum 140cpu651504 vulnerabilities

Schneider Electric Modicon M580 Bmep586040c4 vulnerabilities

Schneider Electric Ecostruxure Energy Expert4 vulnerabilities

Schneider Electric Ecostruxure Power Commission4 vulnerabilities

Schneider Electric Proface Gp Pro Ex Pfxexgrpls4 vulnerabilities

Schneider Electric Proface Gp Pro Ex Pfxexedls4 vulnerabilities

Schneider Electric Unity Pro4 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 5634m4 vulnerabilities

Schneider Electric Wonderware Intouch 20144 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 4634m4 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 2634m4 vulnerabilities

Schneider Electric Modicon M580 Bmep5860404 vulnerabilities

Schneider Electric Modicon M340 Bmxp3410004 vulnerabilities

Schneider Electric Modicon M340 Bmxp3420104 vulnerabilities

Schneider Electric Modicon Premium Tsxp57 6634m4 vulnerabilities

Schneider Electric Modicon M580 Bmep585040c4 vulnerabilities

Schneider Electric Modicon M580 Bmep5850404 vulnerabilities

Schneider Electric Modicon M580 Bmeh5820404 vulnerabilities

Schneider Electric Modicon M580 Bmeh582040c4 vulnerabilities

Schneider Electric Modicon M580 Bmeh582040s4 vulnerabilities

Schneider Electric Modicon M580 Bmeh5840404 vulnerabilities

Schneider Electric Modicon M580 Bmeh584040c4 vulnerabilities

Schneider Electric Modicon M580 Bmeh584040s4 vulnerabilities

Schneider Electric Modicon M580 Bmeh5860404 vulnerabilities

Schneider Electric Modicon M580 Bmeh586040c4 vulnerabilities

Schneider Electric Modicon M580 Bmeh586040s4 vulnerabilities

Schneider Electric Modicon M580 Bmep5810204 vulnerabilities

Schneider Electric Modicon M580 Bmep581020h4 vulnerabilities

Schneider Electric Modicon M580 Bmep5820204 vulnerabilities

Schneider Electric Modicon M580 Bmep582020h4 vulnerabilities

Schneider Electric Modicon M580 Bmep5820404 vulnerabilities

Schneider Electric Modicon M580 Bmep582040h4 vulnerabilities

Schneider Electric Modicon M580 Bmep582040s4 vulnerabilities

Schneider Electric Modicon M580 Bmep5830204 vulnerabilities

Schneider Electric Modicon M580 Bmep5830404 vulnerabilities

Schneider Electric Modicon M580 Bmep5840204 vulnerabilities

Schneider Electric Modicon M580 Bmep5840404 vulnerabilities

Schneider Electric Modicon M580 Bmep584040s4 vulnerabilities

Schneider Electric Somachine Hvac3 vulnerabilities

Schneider Electric Proclima3 vulnerabilities

Schneider Electric Vijeo Designer3 vulnerabilities

Schneider Electric Somachine Motion3 vulnerabilities

Schneider Electric Powerscada Operation With Advanced Reporting Dashboards3 vulnerabilities

Schneider Electric Wonderware Archestra Logger3 vulnerabilities

Schneider Electric Ecostruxure Geo Scada Expert 20213 vulnerabilities

Schneider Electric Ecostruxure Machine Expert3 vulnerabilities

Schneider Electric Powerscada Expert With Advanced Reporting Dashboards3 vulnerabilities

Schneider Electric Somove3 vulnerabilities

Schneider Electric Power Manager3 vulnerabilities

Schneider Electric Opc Factory Server2 vulnerabilities

Schneider Electric Pro Face Gp Pro Ex2 vulnerabilities

Schneider Electric Ecostruxure Cybersecurity Admin Expert2 vulnerabilities

Schneider Electric Ecostruxure It Gateway2 vulnerabilities

Schneider Electric Software Update2 vulnerabilities

Schneider Electric Ecostruxure Power Build Rapsody2 vulnerabilities

Schneider Electric U Motion2 vulnerabilities

Schneider Electric Software Update Utility2 vulnerabilities

By the Year

In 2024 there have been 6 vulnerabilities in Schneider Electric with an average score of 7.3 out of ten. Last year Schneider Electric had 65 security vulnerabilities published. Right now, Schneider Electric is on track to have less security vulnerabilities in 2024 than it did last year. Last year, the average CVE base score was greater by 0.92

Year Vulnerabilities Average Score
2024 6 7.30
2023 65 8.22
2022 49 7.88
2021 38 7.43
2020 48 7.80
2019 18 7.46
2018 61 6.75

It may take a day or so for new Schneider Electric vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Schneider Electric Security Vulnerabilities

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists

CVE-2024-2602 7.8 - High - July 11, 2024

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could result in remote code execution when an authenticated user executes a saved project file that has been tampered by a malicious actor.

Directory traversal

CWE-787: Out-of-Bounds Write vulnerability exists

CVE-2024-5679 7.1 - High - July 11, 2024

CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, or kernel memory leak when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver.

Memory Corruption

CWE-129: Improper Validation of Array Index vulnerability exists

CVE-2024-5680 5.5 - Medium - July 11, 2024

CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of-service when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver.

out-of-bounds array index

CWE-20: Improper Input Validation vulnerability exists

CVE-2024-5681 7.8 - High - July 11, 2024

CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver.

Improper Input Validation

CWE-798: Use of hard-coded credentials vulnerability exists

CVE-2024-0865 7.8 - High - June 12, 2024

CWE-798: Use of hard-coded credentials vulnerability exists that could cause local privilege escalation when logged in as a non-administrative user.

Use of Hard-coded Credentials

A CWE-502: Deserialization of untrusted data vulnerability exists

CVE-2023-7032 7.8 - High - January 09, 2024

A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker logged in with a user level account to gain higher privileges by providing a harmful serialized object.

Marshaling, Unmarshaling

A CWE-601 URL Redirection to Untrusted Site vulnerability exists

CVE-2023-5986 6.1 - Medium - November 15, 2023

A CWE-601 URL Redirection to Untrusted Site vulnerability exists that could cause an openredirect vulnerability leading to a cross site scripting attack. By providing a URL-encoded input attackers can cause the softwares web application to redirect to the chosen domain after a successful login is performed.

Open Redirect

A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability

CVE-2023-5987 6.1 - Medium - November 15, 2023

A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability that could cause a vulnerability leading to a cross site scripting condition where attackers can have a victims browser run arbitrary JavaScript when they visit a page containing the injected payload.

A CWE-502: Deserialization of untrusted data vulnerability exists

CVE-2023-5391 9.8 - Critical - October 04, 2023

A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker to execute arbitrary code on the targeted system by sending a specifically crafted packet to the application.

Marshaling, Unmarshaling

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists

CVE-2023-5399 9.8 - Critical - October 04, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause tampering of files on the personal computer running C-Bus when using the File Command.

Directory traversal

A CWE-269: Improper Privilege Management vulnerability exists

CVE-2023-5402 9.8 - Critical - October 04, 2023

A CWE-269: Improper Privilege Management vulnerability exists that could cause a remote code execution when the transfer command is used over the network.

Improper Privilege Management

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the IGSS Update Service

CVE-2023-4516 7.8 - High - September 14, 2023

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the IGSS Update Service that could allow a local attacker to change update source, potentially leading to remote code execution when the attacker force an update containing malicious content.

Missing Authentication for Critical Function

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists

CVE-2023-3953 5.3 - Medium - August 09, 2023

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause memory corruption when an authenticated user opens a tampered log file from GP-Pro EX.

Buffer Overflow

A CWE-120: Buffer Copy without Checking Size of Input (Classic Buffer Overflow) vulnerability exists

CVE-2023-29414 7.8 - High - July 12, 2023

A CWE-120: Buffer Copy without Checking Size of Input (Classic Buffer Overflow) vulnerability exists that could cause user privilege escalation if a local user sends specific string input to a local function call.

Classic Buffer Overflow

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists

CVE-2023-37199 7.2 - High - July 12, 2023

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that could cause remote code execution when an admin user on DCE tampers with backups which are then manually restored.

Code Injection

A CWE-89: Improper Neutralization of Special Elements vulnerability used in an SQL Command ('SQL Injection') vulnerability exists

CVE-2023-37196 8.8 - High - July 12, 2023

A CWE-89: Improper Neutralization of Special Elements vulnerability used in an SQL Command ('SQL Injection') vulnerability exists that could allow a user already authenticated on DCE to access unauthorized content, change, or delete content, or perform unauthorized actions when tampering with the alert settings of endpoints on DCE.

SQL Injection

A CWE-89: Improper Neutralization of Special Elements vulnerability used in an SQL Command ('SQL Injection') vulnerability exists

CVE-2023-37197 8.8 - High - July 12, 2023

A CWE-89: Improper Neutralization of Special Elements vulnerability used in an SQL Command ('SQL Injection') vulnerability exists that could allow a user already authenticated on DCE to access unauthorized content, change, or delete content, or perform unauthorized actions when tampering with the mass configuration settings of endpoints on DCE.

SQL Injection

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists

CVE-2023-37198 7.2 - High - July 12, 2023

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that could cause remote code execution when an admin user on DCE uploads or tampers with install packages.

Code Injection

A CWE-787: Out-of-Bounds Write vulnerability exists

CVE-2023-2569 7.8 - High - June 14, 2023

A CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, elevation of privilege, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver.

Memory Corruption

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists

CVE-2023-1049 7.8 - High - June 14, 2023

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that could cause execution of malicious code when an unsuspicious user loads a project file from the local filesystem into the HMI.

Code Injection

A CWE-129: Improper Validation of Array Index vulnerability exists

CVE-2023-2570 7.8 - High - June 14, 2023

A CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of-service, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an unpredictable index to an IOCTL call in the Foxboro.sys driver.

out-of-bounds array index

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module

CVE-2023-3001 7.8 - High - June 14, 2023

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution when an attacker gets the user to open a malicious file.

Marshaling, Unmarshaling

A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists

CVE-2023-2161 5.5 - Medium - May 16, 2023

A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause unauthorized read access to the file system when a malicious configuration file is loaded on to the software by a local user. 

XXE

A CWE-613: Insufficient Session Expiration vulnerability exists

CVE-2023-28003 8.8 - High - April 18, 2023

A CWE-613: Insufficient Session Expiration vulnerability exists that could allow an attacker to maintain unauthorized access over a hijacked session in PME after the legitimate user has signed out of their account.

Insufficient Session Expiration

A CWE-863: Incorrect Authorization vulnerability exists

CVE-2023-25547 8.8 - High - April 18, 2023

A CWE-863: Incorrect Authorization vulnerability exists that could allow remote code execution on upload and install packages when a hacker is using a low privileged user account. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

AuthZ

A CWE-863: Incorrect Authorization vulnerability exists

CVE-2023-25548 6.5 - Medium - April 18, 2023

A CWE-863: Incorrect Authorization vulnerability exists that could allow access to device credentials on specific DCE endpoints not being properly secured when a hacker is using a low privileged user. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

AuthZ

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists

CVE-2023-25549 9.8 - Critical - April 18, 2023

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

Code Injection

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists

CVE-2023-25550 9.8 - Critical - April 18, 2023

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that allows remote code execution via the hostname parameter when maliciously crafted hostname syntax is entered. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

Code Injection

A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists on a DCE file upload endpoint when tampering with parameters over HTTP

CVE-2023-25551 6.1 - Medium - April 18, 2023

A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists on a DCE file upload endpoint when tampering with parameters over HTTP. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

XSS

A CWE-862: Missing Authorization vulnerability exists

CVE-2023-25552 8.1 - High - April 18, 2023

A CWE-862: Missing Authorization vulnerability exists that could allow viewing of unauthorized content, changes or deleting of content, or performing unauthorized functions when tampering the Device File Transfer settings on DCE endpoints. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

AuthZ

A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists on a DCE endpoint through the logging capabilities of the webserver

CVE-2023-25553 6.1 - Medium - April 18, 2023

A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists on a DCE endpoint through the logging capabilities of the webserver. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

XSS

A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists

CVE-2023-25554 7.8 - High - April 18, 2023

A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that allows a local privilege escalation on the appliance when a maliciously crafted Operating System command is entered on the device. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

Shell injection

A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists

CVE-2023-25555 8.1 - High - April 18, 2023

A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow a user that knows the credentials to execute unprivileged shell commands on the appliance over SSH. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

Shell injection

A CWE-427 - Uncontrolled Search Path Element vulnerability exists

CVE-2022-34755 6.7 - Medium - April 18, 2023

A CWE-427 - Uncontrolled Search Path Element vulnerability exists that could allow an attacker with a local privileged account to place a specially crafted file on the target machine, which may give the attacker the ability to execute arbitrary code during the installation process initiated by a valid user. Affected Products: Easergy Builder Installer (1.7.23 and prior)

DLL preloading

A CWE-269: Improper Privilege Management vulnerability exists

CVE-2023-1548 5.5 - Medium - April 18, 2023

A CWE-269: Improper Privilege Management vulnerability exists that could cause a local user to perform a denial of service through the console server service that is part of EcoStruxure Control Expert. Affected Products: EcoStruxure Control Expert (V15.1 and above)

Improper Privilege Management

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists

CVE-2023-27976 8.8 - High - April 18, 2023

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause remote code execution when a valid user visits a malicious link provided through the web endpoints. Affected Products: EcoStruxure Control Expert (V15.1 and above)

Exposure of Resource to Wrong Sphere

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface

CVE-2023-27983 5.3 - Medium - March 21, 2023

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow deletion of reports from the IGSS project report directory, this would lead to loss of data when an attacker abuses this functionality. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).

Missing Authentication for Critical Function

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server

CVE-2023-27979 6.5 - Medium - March 21, 2023

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could allow the renaming of files in the IGSS project report directory, this could lead to denial of service when an attacker sends specific crafted messages to the Data Server TCP port. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).

Insufficient Verification of Data Authenticity

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server

CVE-2023-27977 5.3 - Medium - March 21, 2023

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause access to delete files in the IGSS project report directory, this could lead to loss of data when an attacker sends specific crafted messages to the Data Server TCP port. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).

Insufficient Verification of Data Authenticity

A CWE-20: Improper Input Validation vulnerability exists in Custom Reports

CVE-2023-27984 8.8 - High - March 21, 2023

A CWE-20: Improper Input Validation vulnerability exists in Custom Reports that could cause a macro to be executed, potentially leading to remote code execution when a user opens a malicious report file planted by an attacker. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).

Improper Input Validation

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists in Custom Reports

CVE-2023-27981 8.8 - High - March 21, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists in Custom Reports that could cause a remote code execution when a victim tries to open a malicious report. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).

Directory traversal

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module

CVE-2023-27978 7.8 - High - March 21, 2023

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that could cause an interpretation of malicious payload data, potentially leading to remote code execution when an attacker gets the user to open a malicious file. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).

Marshaling, Unmarshaling

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server

CVE-2023-27982 8.8 - High - March 21, 2023

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause manipulation of dashboard files in the IGSS project report directory, when an attacker sends specific crafted messages to the Data Server TCP port, this could lead to remote code execution when a victim eventually opens a malicious dashboard file. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).

Insufficient Verification of Data Authenticity

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface

CVE-2023-27980 8.8 - High - March 21, 2023

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow the creation of a malicious report file in the IGSS project report directory, this could lead to remote code execution when a victim eventually opens the report. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior)

Missing Authentication for Critical Function

A CWE-117: Improper Output Neutralization for Logs vulnerability exists

CVE-2023-0595 5.3 - Medium - February 24, 2023

A CWE-117: Improper Output Neutralization for Logs vulnerability exists that could cause the misinterpretation of log files when malicious packets are sent to the Geo SCADA server's database web port (default 443). Affected products: EcoStruxure Geo SCADA Expert 2019, EcoStruxure Geo SCADA Expert 2020, EcoStruxure Geo SCADA Expert 2021(All Versions prior to October 2022), ClearSCADA (All Versions)

Improper Output Neutralization for Logs

A CWE-190: Integer Overflow or Wraparound vulnerability exists

CVE-2022-2329 9.8 - Critical - February 01, 2023

A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer overflow, leading to denial of service and potentially remote code execution when an attacker sends multiple specially crafted messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22073)

Integer Overflow or Wraparound

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-24324 9.8 - Critical - February 01, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22073)

Classic Buffer Overflow

A CWE-285: Improper Authorization vulnerability exists

CVE-2022-4062 7.8 - High - February 01, 2023

A CWE-285: Improper Authorization vulnerability exists that could cause unauthorized access to certain software functions when an attacker gets access to localhost interface of the EcoStruxure Power Commission application. Affected Products: EcoStruxure Power Commission (Versions prior to V2.25)

AuthZ

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists

CVE-2023-22611 7.5 - High - January 31, 2023

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure when specific messages are sent to the server over the database server TCP port. Affected Products: EcoStruxure Geo SCADA Expert 2019 - 2021 (formerly known as ClearSCADA) (Versions prior to October 2022)

A CWE-863: Incorrect Authorization vulnerability exists

CVE-2023-22610 7.5 - High - January 31, 2023

A CWE-863: Incorrect Authorization vulnerability exists that could cause Denial of Service against the Geo SCADA server when specific messages are sent to the server over the database server TCP port.

AuthZ

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists

CVE-2022-45789 9.8 - Critical - January 31, 2023

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert (All Versions), EcoStruxure Process Expert (All Versions), Modicon M340 CPU - part numbers BMXP34* (All Versions), Modicon M580 CPU - part numbers BMEP* and BMEH* (All Versions), Modicon M580 CPU Safety - part numbers BMEP58*S and BMEH58*S (All Versions)

Authentication Bypass by Capture-replay

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-32529 9.8 - Critical - January 30, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted log data request messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Classic Buffer Overflow

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists

CVE-2022-32512 7.8 - High - January 30, 2023

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause remote code execution when a command which exploits this vulnerability is utilized. Affected Products: CanBRASS (Versions prior to V7.5.1)

Buffer Overflow

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists

CVE-2022-22732 7.5 - High - January 30, 2023

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause all remote domains to access the resources (data) supplied by the server when an attacker sends a fetch request from third-party site or malicious site. Affected Products: EcoStruxure Power Commission (Versions prior to V2.22)

Exposure of Resource to Wrong Sphere

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in a function that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries

CVE-2022-22731 9.8 - Critical - January 30, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in a function that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause path traversal attacks. Affected Products: EcoStruxure Power Commission (Versions prior to V2.22)

Directory traversal

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries

CVE-2022-0223 9.8 - Critical - January 30, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause unauthenticated code execution. Affected Products: EcoStruxure Power Commission (Versions prior to V2.22)

Directory traversal

A CWE-306: Missing Authentication for Critical Function vulnerability exists

CVE-2022-32528 9.1 - Critical - January 30, 2023

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause access to manipulate and read specific files in the IGSS project report directory, potentially leading to a denial-of-service condition when an attacker sends specific messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Missing Authentication for Critical Function

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-32527 9.8 - Critical - January 30, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted alarm cache data messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Classic Buffer Overflow

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-32524 9.8 - Critical - January 30, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted time reduced data messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Classic Buffer Overflow

A CWE 502: Deserialization of Untrusted Data vulnerability exists

CVE-2022-32521 8.8 - High - January 30, 2023

A CWE 502: Deserialization of Untrusted Data vulnerability exists that could allow code to be remotely executed on the server when unsafely deserialized data is posted to the web server. Affected Products: Data Center Expert (Versions prior to V7.9.0)

Marshaling, Unmarshaling

A CWE-522: Insufficiently Protected Credentials vulnerability exists

CVE-2022-32520 9.8 - Critical - January 30, 2023

A CWE-522: Insufficiently Protected Credentials vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. This CVE is unique from CVE-2022-32518. Affected Products: Data Center Expert (Versions prior to V7.9.0)

Insufficiently Protected Credentials

A CWE-257: Storing Passwords in a Recoverable Format vulnerability exists

CVE-2022-32519 9.8 - Critical - January 30, 2023

A CWE-257: Storing Passwords in a Recoverable Format vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. Affected Products: Data Center Expert (Versions prior to V7.9.0)

Insufficiently Protected Credentials

A CWE-522: Insufficiently Protected Credentials vulnerability exists

CVE-2022-32518 9.8 - Critical - January 30, 2023

A CWE-522: Insufficiently Protected Credentials vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. This CVE is unique from CVE-2022-32520. Affected Products: Data Center Expert (Versions prior to V7.9.0)

Insufficiently Protected Credentials

A CWE-295: Improper Certificate Validation vulnerability exists

CVE-2022-32748 8.3 - High - January 30, 2023

A CWE-295: Improper Certificate Validation vulnerability exists that could cause the CAE software to give wrong data to end users when using CAE to configure devices. Additionally, credentials could leak which would enable an attacker the ability to log into the configuration tool and compromise other devices in the network. Affected Products: EcoStruxure Cybersecurity Admin Expert (CAE) (Versions prior to 2.2)

Improper Certificate Validation

A CWE-290: Authentication Bypass by Spoofing vulnerability exists

CVE-2022-32747 8.1 - High - January 30, 2023

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure Cybersecurity Admin Expert (CAE) (Versions prior to 2.2)

Authentication Bypass by Spoofing

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-32526 9.8 - Critical - January 30, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted setting value messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Classic Buffer Overflow

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-32525 9.8 - Critical - January 30, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted alarm data messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Classic Buffer Overflow

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-32522 9.8 - Critical - January 30, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted mathematically reduced data request messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Classic Buffer Overflow

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2022-32523 9.8 - Critical - January 30, 2023

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted online data request messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170)

Classic Buffer Overflow

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists

CVE-2022-45788 9.8 - Critical - January 30, 2023

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when a malicious project file is loaded onto the controller. Affected Products: EcoStruxure Control Expert (All Versions), EcoStruxure Process Expert (All Versions), Modicon M340 CPU - part numbers BMXP34* (All Versions), Modicon M580 CPU - part numbers BMEP* and BMEH* (All Versions), Modicon M580 CPU Safety - part numbers BMEP58*S and BMEH58*S (All Versions), Modicon Momentum Unity M1E Processor - 171CBU* (All Versions), Modicon MC80 - BMKC80 (All Versions), Legacy Modicon Quantum - 140CPU65* and Premium CPUs - TSXP57* (All Versions)

Improper Check for Unusual or Exceptional Conditions

A CWE-787: Out-of-bounds Write vulnerability exists

CVE-2022-2988 7.5 - High - January 30, 2023

A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. Affected Products: SoMachine HVAC (Versions prior to V2.1.0), EcoStruxure Machine Expert HVAC (Versions prior to V1.4.0)

Memory Corruption

A CWE-89: Improper Neutralization of Special Elements used in SQL Command (SQL Injection) vulnerability exists

CVE-2022-41671 7.8 - High - November 04, 2022

A CWE-89: Improper Neutralization of Special Elements used in SQL Command (SQL Injection) vulnerability exists that allows adversaries with local user privileges to craft a malicious SQL query and execute as part of project migration which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal Expert(V3.3 Hotfix 1 or prior), Pro-face BLUE(V3.3 Hotfix1 or prior).

SQL Injection

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in the SGIUtility component

CVE-2022-41670 7.8 - High - November 04, 2022

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in the SGIUtility component that allows adversaries with local user privileges to load malicious DLL which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal Expert(V3.3 Hotfix 1 or prior), Pro-face BLUE(V3.3 Hotfix1 or prior).

Directory traversal

A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists in the SGIUtility component

CVE-2022-41669 7.8 - High - November 04, 2022

A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists in the SGIUtility component that allows adversaries with local user privileges to load a malicious DLL which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal Expert(V3.3 Hotfix 1 or prior), Pro-face BLUE(V3.3 Hotfix1 or prior).

Improper Verification of Cryptographic Signature

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists

CVE-2022-41667 7.8 - High - November 04, 2022

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that allows adversaries with local user privileges to load a malicious DLL which could lead to execution of malicious code. Affected Products: EcoStruxure Operator Terminal Expert(V3.3 Hotfix 1 or prior), Pro-face BLUE(V3.3 Hotfix1 or prior).

Directory traversal

A CWE-704: Incorrect Project Conversion vulnerability exists

CVE-2022-41668 7.8 - High - November 04, 2022

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal Expert(V3.3 Hotfix 1 or prior), Pro-face BLUE(V3.3 Hotfix1 or prior).

Incorrect Type Conversion or Cast

A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists

CVE-2022-41666 7.8 - High - November 04, 2022

A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that allows adversaries with local user privileges to load a malicious DLL which could lead to execution of malicious code. Affected Products: EcoStruxure Operator Terminal Expert(V3.3 Hotfix 1 or prior), Pro-face BLUE(V3.3 Hotfix1 or prior).

Improper Verification of Cryptographic Signature

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists

CVE-2022-37302 5.5 - Medium - September 13, 2022

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a crash of the Control Expert software when an incorrect project file is opened. Affected Products: EcoStruxure Control Expert(V15.1 HF001 and prior).

Buffer Overflow

A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists

CVE-2022-37300 9.8 - Critical - September 12, 2022

A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists that could cause unauthorized access in read and write mode to the controller when communicating over Modbus. Affected Products: EcoStruxure Control Expert Including all Unity Pro versions (former name of EcoStruxure Control Expert) (V15.0 SP1 and prior), EcoStruxure Process Expert, Including all versions of EcoStruxure Hybrid DCS (former name of EcoStruxure Process Expert) (V2021 and prior), Modicon M340 CPU (part numbers BMXP34*) (V3.40 and prior), Modicon M580 CPU (part numbers BMEP* and BMEH*) (V3.20 and prior).

Weak Password Recovery Mechanism for Forgotten Password

A CWE-668 Exposure of Resource to Wrong Sphere vulnerability exists

CVE-2022-32530 7.8 - High - June 24, 2022

A CWE-668 Exposure of Resource to Wrong Sphere vulnerability exists that could cause users to be misled, hiding alarms, showing the wrong server connection option or the wrong control request when a mobile device has been compromised by a malicious application. Affected Product: Geo SCADA Mobile (Build 222 and prior)

Exposure of Resource to Wrong Sphere

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7

CVE-2022-26507 9.8 - Critical - April 14, 2022

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828, CVE-2021-21829, or CVE-2021-21830. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Memory Corruption

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal) vulnerability exists

CVE-2021-22797 7.8 - High - April 13, 2022

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal) vulnerability exists that could cause malicious script to be deployed in an unauthorized location and may result in code execution on the engineering workstation when a malicious project file is loaded in the engineering software. Affected Product: EcoStruxure Control Expert (V15.0 SP1 and prior, including former Unity Pro), EcoStruxure Process Expert (2020 and prior, including former HDCS), SCADAPack RemoteConnect for x70 (All versions)

Directory traversal

A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists

CVE-2022-0221 5.5 - Medium - April 13, 2022

A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could result in information disclosure when opening a malicious solution file provided by an attacker with SCADAPack Workbench. This could be exploited to pass data from local files to a remote system controlled by an attacker. Affected Product: SCADAPack Workbench (6.6.8a and prior)

XXE

A CWE-502: Deserialization of Untrusted Data vulnerability exists which could

CVE-2019-6834 7.8 - High - April 13, 2022

A CWE-502: Deserialization of Untrusted Data vulnerability exists which could allow an attacker to execute arbitrary code on the targeted system with SYSTEM privileges when placing a malicious user to be authenticated for this vulnerability to be successfully exploited. Affected Product: Schneider Electric Software Update (SESU) SUT Service component (V2.1.1 to V2.3.0)

Marshaling, Unmarshaling

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists

CVE-2021-22794 9.8 - Critical - April 13, 2022

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution. Affected Product: StruxureWare Data Center Expert (V7.8.1 and prior)

Directory traversal

A CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists

CVE-2021-22795 9.8 - Critical - April 13, 2022

A CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote code execution when performed over the network. Affected Product: StruxureWare Data Center Expert (V7.8.1 and prior)

Shell injection

A CWE-200: Information Exposure vulnerability exists which could allow a session hijack when the door panel is communicating with the door

CVE-2021-22783 7.6 - High - March 09, 2022

A CWE-200: Information Exposure vulnerability exists which could allow a session hijack when the door panel is communicating with the door. Affected Product: Ritto Wiser Door (All versions)

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists

CVE-2022-24322 5.9 - Medium - March 09, 2022

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product: EcoStruxure Control Expert (V15.0 SP1 and prior)

Buffer Overflow

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists

CVE-2022-24323 5.9 - Medium - March 09, 2022

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software, when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product: EcoStruxure Process Expert (V2021 and prior), EcoStruxure Control Expert (V15.0 SP1 and prior)

Improper Check for Unusual or Exceptional Conditions

A CWE-306: Missing Authentication for Critical Function vulnerability exists

CVE-2021-22805 9.1 - Critical - February 11, 2022

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network messages. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21243 and prior)

Missing Authentication for Critical Function

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2021-22802 9.8 - Critical - February 11, 2022

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution due to missing length check on user supplied data, when a constructed message is received on the network. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21243 and prior)

Classic Buffer Overflow

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists

CVE-2021-22804 7.5 - High - February 11, 2022

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause disclosure of arbitrary files being read in the context of the user running IGSS, due to missing validation of user supplied data in network messages. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21243 and prior)

Directory traversal

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists

CVE-2021-22803 9.8 - Critical - February 11, 2022

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could lead to remote code execution through a number of paths, when an attacker, writes arbitrary files to folders in context of the DC module, by sending constructed messages on the network. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21243 and prior)

Unrestricted File Upload

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists

CVE-2021-22824 7.5 - High - February 11, 2022

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in denial of service, due to missing length check on user-supplied data from a constructed message received on the network. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)

Classic Buffer Overflow

A CWE-269: Improper Privilege Management vulnerability exists

CVE-2021-22801 9.8 - Critical - February 11, 2022

A CWE-269: Improper Privilege Management vulnerability exists that could cause an arbitrary command execution when the software is configured with specially crafted event actions. Affected Product: ConneXium Network Manager Software (All Versions)

Improper Privilege Management

A CWE-306: Missing Authentication for Critical Function vulnerability exists

CVE-2021-22823 9.1 - Critical - February 11, 2022

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network messages. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)

Missing Authentication for Critical Function

A CWE-287: Improper Authentication vulnerability exists that could allow remote code execution when a malicious file is uploaded

CVE-2021-22796 7.8 - High - February 11, 2022

A CWE-287: Improper Authentication vulnerability exists that could allow remote code execution when a malicious file is uploaded. Affected Product: C-Bus Toolkit (V1.15.9 and prior), C-Gate Server (V2.11.7 and prior)

authentification

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists

CVE-2021-22748 8.8 - High - February 11, 2022

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow a remote code execution when a file is saved. Affected Product: C-Bus Toolkit (V1.15.9 and prior), C-Gate Server (V2.11.7 and prior)

Directory traversal

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists

CVE-2022-24321 7.5 - High - February 09, 2022

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause Denial of Service against the Geo SCADA server when receiving a malformed HTTP request. Affected Product: ClearSCADA (All Versions), EcoStruxure Geo SCADA Expert 2019 (All Versions), EcoStruxure Geo SCADA Expert 2020 (All Versions)

Improper Check for Unusual or Exceptional Conditions

A CWE-295: Improper Certificate Validation vulnerability exists

CVE-2022-24319 5.9 - Medium - February 09, 2022

A CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communications between the client and Geo SCADA web server are intercepted. Affected Product: ClearSCADA (All Versions), EcoStruxure Geo SCADA Expert 2019 (All Versions), EcoStruxure Geo SCADA Expert 2020 (All Versions)

Improper Certificate Validation

Built by Foundeo Inc., with data from the National Vulnerability Database (NVD), Icons by Icons8. Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.