Vulnerabilities > Schneider Electric > Bmxnor0200H RTU Firmware > High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-11	CVE-2021-22785	Information Exposure vulnerability in Schneider-Electric products A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server of the device. network low complexity schneider-electric CWE-200	7.5
2022-02-11	CVE-2021-22787	Improper Input Validation vulnerability in Schneider-Electric products A CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of the device when an attacker sends a specially crafted HTTP request to the web server of the device. network low complexity schneider-electric CWE-20	7.5
2022-02-11	CVE-2021-22788	Out-of-bounds Write vulnerability in Schneider-Electric products A CWE-787: Out-of-bounds Write vulnerability exists that could cause denial of service when an attacker sends a specially crafted HTTP request to the web server of the device. network low complexity schneider-electric CWE-787	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.