CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

ICS•added 2024/01/11 7:0 a.m.•58 views

Schneider Electric Easergy Studio

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Schneider Electric Equipment : Easergy Studio Vulnerability : Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain full control of a...

7.8CVSS8AI score0.00421EPSS

Exploits0References8

Circl•added 2024/01/09 9:27 p.m.•3 views

CVE-2023-7032

creationtimestamp| type| source ---|---|--- 2024-01-09 21:27:31+00:00| seen| https://t.me/ctinow/165373 2024-01-27 04:41:23+00:00| seen| https://t.me/ctinow/174620 2024-02-11 13:08:53+00:00| seen| https://t.me/arpsyndicate/3379...

7.8CVSS7.5AI score0.00421EPSS

Exploits0References3

OSV•added 2024/01/09 8:15 p.m.•2 views

CVE-2023-7032

A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker logged in with a user level account to gain higher privileges by providing a harmful serialized object...

7.8CVSS5.8AI score0.00421EPSS

Exploits0References1

CVE•added 2024/01/09 7:30 p.m.•50 views

CVE-2023-7032

Schneider Electric Easergy Studio is affected by CVE-2023-7032, a CWE-502 deserialization of untrusted data flaw. Versions prior to 9.3.5 allow a user-level attacker to escalate privileges by submitting a harmful serialized object, potentially gaining SYSTEM-level code execution on the host. The ...

7.8CVSS7.6AI score0.00421EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by