Vulnerabilities > Schneider Electric > X80 Advanced RTU Module Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-13 | CVE-2022-34759 | Unspecified vulnerability in Schneider-Electric products A CWE-787: Out-of-bounds Write vulnerability exists that could cause a denial of service of the webserver due to improper parsing of the HTTP Headers. | 7.5 |
| 2022-07-13 | CVE-2022-34760 | Unspecified vulnerability in Schneider-Electric products A CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability exists that could cause a denial of service of the webserver due to improper handling of the cookies. | 7.5 |
| 2022-07-13 | CVE-2022-34761 | Unspecified vulnerability in Schneider-Electric products A CWE-476: NULL Pointer Dereference vulnerability exists that could cause a denial of service of the webserver when parsing JSON content type. | 7.5 |
| 2022-07-13 | CVE-2022-34762 | Unspecified vulnerability in Schneider-Electric products A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause unauthorized firmware image loading when unsigned images are added to the firmware image path. | 7.5 |
| 2022-07-13 | CVE-2022-34763 | Unspecified vulnerability in Schneider-Electric products A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists that could cause loading of unauthorized firmware images due to improper verification of the firmware signature. | 7.5 |
| 2022-07-13 | CVE-2022-34764 | Unspecified vulnerability in Schneider-Electric products A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause denial of service when parsing the URL. | 7.5 |
| 2022-07-13 | CVE-2022-34765 | Exposure of Resource to Wrong Sphere vulnerability in Schneider-Electric products A CWE-73: External Control of File Name or Path vulnerability exists that could cause loading of unauthorized firmware images when user-controlled data is written to the file path. | 5.3 |