Vulnerabilities > CVE-2023-27976 - Unspecified vulnerability in Schneider-Electric Ecostruxure Control Expert 15.1

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
schneider-electric

Summary

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause remote code execution when a valid user visits a malicious link provided through the web endpoints. Affected Products: EcoStruxure Control Expert (V15.1 and above)

Vulnerable Configurations

Part Description Count
Application
Schneider-Electric
1