Lucene search
K

4 matches found

NVD
NVD
added 2023/04/18 9:15 p.m.16 views

CVE-2023-25549

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

9.8CVSS8.1AI score0.01182EPSS
Exploits0References1
OSV
OSV
added 2023/04/18 9:15 p.m.5 views

CVE-2023-25549

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

9.8CVSS7.9AI score0.01182EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/18 8:35 p.m.10 views

CVE-2023-25549

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

7.2CVSS9.9AI score0.01182EPSS
Exploits0References1
CVE
CVE
added 2023/04/18 8:35 p.m.56 views

CVE-2023-25549

Schneider Electric StruxureWare Data Center Expert (versions prior to 7.9.2) contains a CWE-94 code-injection flaw that allows remote code execution via a parameter of the DCE network settings endpoint. Exploitation details are not elaborated in the provided documents, but the issue is described ...

9.8CVSS9.7AI score0.01182EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder