Schneider Electric Software Update
By the Year
In 2024 there have been 0 vulnerabilities in Schneider Electric Software Update . Software Update did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 2 | 5.80 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Software Update vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Schneider Electric Software Update Security Vulnerabilities
A CWE-502: Deserialization of Untrusted Data vulnerability exists which could
CVE-2019-6834
7.8 - High
- April 13, 2022
A CWE-502: Deserialization of Untrusted Data vulnerability exists which could allow an attacker to execute arbitrary code on the targeted system with SYSTEM privileges when placing a malicious user to be authenticated for this vulnerability to be successfully exploited. Affected Product: Schneider Electric Software Update (SESU) SUT Service component (V2.1.1 to V2.3.0)
Marshaling, Unmarshaling
A CWE-331: Insufficient Entropy vulnerability exists
CVE-2021-22799
3.8 - Low
- January 28, 2022
A CWE-331: Insufficient Entropy vulnerability exists that could cause unintended connection from an internal network to an external network when an attacker manages to decrypt the SESU proxy password from the registry. Affected Product: Schneider Electric Software Update, V2.3.0 through V2.5.1
Insufficient Entropy
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Schneider Electric Software Update or by Schneider Electric? Click the Watch button to subscribe.
