Vulnerabilities > Schneider Electric > Insighthome Firmware > 1.16

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-18	CVE-2023-29410	Improper Input Validation vulnerability in Schneider-Electric products A CWE-20: Improper Input Validation vulnerability exists that could allow an authenticated attacker to gain the same privilege as the application on the server when a malicious payload is provided over HTTP for the server to execute. network low complexity schneider-electric CWE-20	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.