Vulnerabilities > Selinc > SEL 3505 3 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-05-10 CVE-2023-31148 Improper Input Validation vulnerability in Selinc products
An Improper Input Validation vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface could allow a remote authenticated attacker to execute arbitrary code. See SEL Service Bulletin dated 2022-11-15 for more details.
network
low complexity
selinc CWE-20
8.8
8.8
2023-05-10 CVE-2023-31149 Improper Input Validation vulnerability in Selinc products
An Improper Input Validation vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface could allow a remote authenticated attacker to execute arbitrary code. See SEL Service Bulletin dated 2022-11-15 for more details.
network
low complexity
selinc CWE-20
8.8
8.8
2023-05-10 CVE-2023-31152 Improper Authentication vulnerability in Selinc products
An Authentication Bypass Using an Alternate Path or Channel vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface allows Authentication Bypass.
network
low complexity
selinc CWE-287
8.8
8.8