Vulnerabilities > Schneider Electric
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-26 | CVE-2021-22744 | Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider-Electric products Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11.3.x systems that could cause module reset when TCM receives malformed TriStation packets while the write-protect keyswitch is in the program position. | 3.9 |
| 2021-05-26 | CVE-2021-22745 | Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider-Electric products Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11.3.x systems that could cause module reset when TCM receives malformed TriStation packets while the write-protect keyswitch is in the program position. | 3.9 |
| 2021-05-26 | CVE-2021-22746 | Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider-Electric products Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11.3.x systems that could cause module reset when TCM receives malformed TriStation packets while the write-protect keyswitch is in the program position. | 3.9 |
| 2021-05-26 | CVE-2021-22747 | Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider-Electric products Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11.3.x systems that could cause module reset when TCM receives malformed TriStation packets while the write-protect keyswitch is in the program position. | 3.9 |
| 2021-04-13 | CVE-2021-22720 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring a project. | 7.2 |
| 2021-04-13 | CVE-2021-22719 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when a file is uploaded. | 8.8 |
| 2021-04-13 | CVE-2021-22718 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring project files. | 7.8 |
| 2021-04-13 | CVE-2021-22717 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when processing config files. | 8.8 |
| 2021-04-13 | CVE-2021-22716 | Incorrect Permission Assignment for Critical Resource vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could allow remote code execution when an unprivileged user modifies a file. | 7.8 |
| 2021-03-11 | CVE-2021-22714 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Schneider-Electric products A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400, PM8000 and ION9000 (All versions prior to V3.0.0), which could cause the meter to reboot or allow for remote code execution. | 9.8 |