Vulnerabilities > Schneider Electric > Ime3122 B1P Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-22 | CVE-2018-7829 | Improper Neutralization of Special Elements in Data Query Logic vulnerability in Schneider-Electric products An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen. | 9.0 |
| 2019-05-22 | CVE-2018-7828 | Cross-Site Request Forgery (CSRF) vulnerability in Schneider-Electric products A Cross-Site Request Forgery (CSRF) vulnerability exists in the 1st Gen. | 6.8 |
| 2019-05-22 | CVE-2018-7827 | Cross-site Scripting vulnerability in Schneider-Electric products A Cross-Site Scripting (XSS) vulnerability exists in the 1st Gen. | 3.5 |
| 2019-05-22 | CVE-2018-7826 | Command Injection vulnerability in Schneider-Electric products A Command Injection vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands. | 6.5 |
| 2019-05-22 | CVE-2018-7825 | Command Injection vulnerability in Schneider-Electric products A Command Injection vulnerability exists in the web-based GUI of the 1st Gen PelcoSarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands. | 6.5 |
| 2019-05-22 | CVE-2018-7816 | Unspecified vulnerability in Schneider-Electric products A Permissions, Privileges, and Access Control vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to delete an arbitrary file. | 5.5 |