Vulnerabilities > Schneider Electric

DATE	CVE	VULNERABILITY TITLE	RISK
2018-05-18	CVE-2017-9637	Insufficiently Protected Credentials vulnerability in Schneider-Electric Ampla Manufacturing Execution System 6.4 Schneider Electric Ampla MES 6.4 provides capability to interact with data from third party databases. local high complexity schneider-electric CWE-522	4.1
2018-05-18	CVE-2017-9635	Inadequate Encryption Strength vulnerability in Schneider-Electric Ampla Manufacturing Execution System 6.4 Schneider Electric Ampla MES 6.4 provides capability to configure users and their privileges. local high complexity schneider-electric CWE-326	3.9
2018-05-14	CVE-2017-6021	Improper Input Validation vulnerability in multiple products In Schneider Electric ClearSCADA 2014 R1 (build 75.5210) and prior, 2014 R1.1 (build 75.5387) and prior, 2015 R1 (build 76.5648) and prior, and 2015 R2 (build 77.5882) and prior, an attacker with network access to the ClearSCADA server can send specially crafted sequences of commands and data packets to the ClearSCADA server that can cause the ClearSCADA server process and ClearSCADA communications driver processes to terminate. network low complexity schneider-electric aveva CWE-20	7.5
2018-05-04	CVE-2018-8872	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Schneider-Electric Triconex Tricon MP 3008 Firmware 10.0/10.4 In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, system calls read directly from memory addresses within the control program area without any verification. network high complexity schneider-electric CWE-119	8.1
2018-05-04	CVE-2018-7522	Unspecified vulnerability in Schneider-Electric Triconex Tricon MP 3008 Firmware 10.0 In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call is made, registers are stored to a fixed memory location. local low complexity schneider-electric	6.7
2018-04-19	CVE-2018-2815	Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). network low complexity oracle redhat debian canonical schneider-electric hp	5.3
2018-04-19	CVE-2018-2814	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). network high complexity oracle redhat debian canonical schneider-electric hp	8.3
2018-04-19	CVE-2018-2811	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Install). local high complexity oracle redhat schneider-electric	7.7
2018-04-19	CVE-2018-2800	Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: RMI). network high complexity oracle redhat debian canonical schneider-electric hp	4.2
2018-04-19	CVE-2018-2799	Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JAXP). network low complexity oracle redhat debian canonical hp schneider-electric apache	5.3

Vulnerabilities > Schneider Electric {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Schneider Electric"}]}

Vulnerabilities > Schneider Electric