Vulnerabilities > Schneider Electric
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-03 | CVE-2018-7780 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Schneider-Electric products In Schneider Electric Pelco Sarix Professional 1st generation cameras with firmware versions prior to 3.29.69, a buffer overflow vulnerability exist in cgi program "set". | 9.8 |
| 2018-07-03 | CVE-2018-7779 | Unspecified vulnerability in Schneider-Electric products In Schneider Electric Wiser for KNX V2.1.0 and prior, homeLYnk V2.0.1 and prior; and spaceLYnk V2.1.0 and prior, weak and unprotected FTP access could allow an attacker unauthorized access. | 7.5 |
| 2018-07-03 | CVE-2018-7778 | Missing Authentication for Critical Function vulnerability in Schneider-Electric Evlink Charging Station Firmware In Schneider Electric Evlink Charging Station versions prior to v3.2.0-12_v1, the Web Interface has an issue that may allow a remote attacker to gain administrative privileges without properly authenticating remote users. | 9.8 |
| 2018-07-03 | CVE-2018-7777 | Improper Input Validation vulnerability in Schneider-Electric U.Motion Builder 1.2.1 The vulnerability is due to insufficient handling of update_file request parameter on update_module.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. | 8.8 |
| 2018-07-03 | CVE-2018-7776 | Information Exposure vulnerability in Schneider-Electric U.Motion Builder 1.2.1 The vulnerability exists within error.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. | 4.3 |
| 2018-07-03 | CVE-2018-7774 | SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1 The vulnerability exists within processing of localize.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. | 8.8 |
| 2018-07-03 | CVE-2018-7773 | SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1 The vulnerability exists within processing of nfcserver.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. | 8.8 |
| 2018-07-03 | CVE-2018-7772 | SQL Injection vulnerability in Schneider-Electric U.Motion Builder 1.2.1 The vulnerability exists within processing of applets which are exposed on the web service in Schneider Electric U.motion Builder software versions prior to v1.3.4. | 8.8 |
| 2018-07-03 | CVE-2018-7771 | Path Traversal vulnerability in Schneider-Electric U.Motion Builder 1.2.1 The vulnerability exists within processing of editscript.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. | 8.0 |
| 2018-07-03 | CVE-2018-7770 | Path Traversal vulnerability in Schneider-Electric U.Motion The vulnerability exists within processing of sendmail.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. | 6.5 |