Schneider Electric Ecostruxure Power Monitoring Expert Vulnerabilità

Sequenza temporale

Versione

20204
9.02

Contromisure

Official Fix10
Temporary Fix0
Workaround0
Unavailable0
Not Defined1

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined11

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent2
Network9

Autenticazione

Not Defined0
High0
Low5
None6

Interazione dell'utente

Not Defined0
Required8
None3

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤31
≤40
≤54
≤62
≤72
≤81
≤90
≤101

CVSSv3 Temp

≤10
≤20
≤31
≤40
≤54
≤62
≤72
≤81
≤90
≤101

VulDB

≤10
≤20
≤31
≤40
≤56
≤61
≤70
≤82
≤90
≤101

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤72
≤80
≤91
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤72
≤80
≤91
≤101

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k2
<2k5
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k11
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (2): 9.0, 2020

Link to Product Website: https://www.schneider-electric.com/

Tipo di software: SCADA Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
15/11/20236.26.1Schneider Electric EcoStruxure Power Monitoring Expert Redirect$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5986
15/11/20235.25.1Schneider Electric EcoStruxure Power Monitoring Expert cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5987
05/10/20239.89.6Schneider Electric EcoStruxure Power Monitoring Expert Packet escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5391
19/04/20237.57.4Schneider Electric EcoStruxure Power Monitoring Expert autenticazione debole$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-28003
29/01/20224.94.7Schneider Electric EcoStruxure Power Monitoring Expert escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-22827
29/01/20224.94.7Schneider Electric EcoStruxure Power Monitoring Expert escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-22826
12/01/20222.62.5Schneider Electric EcoStruxure Power Monitoring Expert Web Page Generation cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-22804
12/01/20225.04.8Schneider Electric EcoStruxure Power Monitoring Expert escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-22727
12/01/20225.35.1Schneider Electric EcoStruxure Power Monitoring Expert lmadmin Tool denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2019-8963
12/01/20224.34.1Schneider Electric EcoStruxure Power Monitoring Expert rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-22726

1 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 1 results.

altre voci di Schneider Electric

PrecedenteVisione D'insiemeIl prossimo

Might our Artificial Intelligence support you?

Check our Alexa App!