Vulnerabilities > CVE-2022-37302 - Unspecified vulnerability in Schneider-Electric Ecostruxure Control Expert 15.1

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
schneider-electric

Summary

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a crash of the Control Expert software when an incorrect project file is opened. Affected Products: EcoStruxure Control Expert(V15.1 HF001 and prior).

Vulnerable Configurations

Part Description Count
Application
Schneider-Electric
2