Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-03 CVE-2018-7774 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of localize.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-7773 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of nfcserver.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-7772 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of applets which are exposed on the web service in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-7771 Path Traversal vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of editscript.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-22
8.0
2018-07-03 CVE-2018-7769 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of xmlserver.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-7768 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of loadtemplate.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-7767 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of editobject.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-7766 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of track_getdata.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-7765 SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1
The vulnerability exists within processing of track_import_export.php in Schneider Electric U.motion Builder software versions prior to v1.3.4.
network
low complexity
schneider-electric CWE-89
8.8
2018-07-03 CVE-2018-4854 Unspecified vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions).
network
low complexity
siemens
8.8