Schneider Electric EcoStruxure Power Monitoring Expert up to 2020 lmadmin Tool denial of service

A vulnerability was found in Schneider Electric EcoStruxure Power Monitoring Expert up to 2020 (SCADA Software) and classified as problematic. This issue affects an unknown part of the component lmadmin Tool. Applying a patch is able to eliminate this problem.

Field01/12/2022 06:02 PM01/15/2022 09:45 AM
vendorSchneider ElectricSchneider Electric
nameEcoStruxure Power Monitoring ExpertEcoStruxure Power Monitoring Expert
version<=2020<=2020
componentlmadmin Toollmadmin Tool
cwe404 (denial of service)404 (denial of service)
risk11
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cNN
cvss3_vuldb_iNN
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
identifierSEVD-2022-011-07SEVD-2022-011-07
urlhttps://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-07https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-07
namePatchPatch
cveCVE-2019-8963CVE-2019-8963
date1641942000 (01/12/2022)1641942000 (01/12/2022)
typeSCADA SoftwareSCADA Software
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciNN
cvss2_vuldb_iiNN
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore5.05.0
cvss2_vuldb_tempscore4.44.4
cvss3_vuldb_basescore5.35.3
cvss3_vuldb_tempscore5.15.1
cvss3_meta_basescore5.35.3
cvss3_meta_tempscore5.15.1
price_0day$0-$5k$0-$5k
cve_assigned1550617200

Do you know our Splunk app?

Download it now for free!