Lucene search
K

30 matches found

Zero Day Initiative
Zero Day Initiative
added 2026/02/12 12:0 a.m.7 views

Schneider Electric EcoStruxure Power Build SSD File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Power Build. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS6.1AI score0.00306EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/02/12 12:0 a.m.6 views

Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Power Build. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS6.1AI score0.00306EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/02/12 12:0 a.m.4 views

Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Power Build. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS6.1AI score0.00306EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/02/12 12:0 a.m.7 views

Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Power Build. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS6.1AI score0.00306EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/02/12 12:0 a.m.8 views

Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Power Build. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS6.1AI score0.00306EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/02/12 12:0 a.m.6 views

Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Power Build. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS6.1AI score0.00306EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.7 views

Schneider Electric EcoStruxure Power Build Rapsody resource management error vulnerability

Schneider Electric EcoStruxure Power Build Rapsody is a power monitoring platform developed by Schneider Electric, a French company. Schneider Electric EcoStruxure Power Build Rapsody has a resource management vulnerability; this vulnerability stems from a double release issue during the import o...

8.4CVSS5.8AI score0.00138EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-9833

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.03873EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2021-9832

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.0347EPSS
Exploits0References3
CNVD
CNVD
added 2025/05/28 12:0 a.m.4 views

Schneider Electric EcoStruxure Power Build Rapsody Stack Buffer Overflow Vulnerability

Schneider Electric EcoStruxure Power Build Rapsody is a power monitoring platform from Schneider Electric France. Schneider Electric EcoStruxure Power Build Rapsody suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to achieve arbitrary code execution on an...

4.6CVSS8.3AI score0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:49 p.m.8 views

CVE-2021-22697

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software V2.1.13 and prior that could allow a use-after-free condition which could result in remote code execution when a malicious SSD file is uploaded and improperly parsed...

7.8CVSS8.1AI score0.0347EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:15 p.m.9 views

CVE-2021-22698

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software V2.1.13 and prior that could allow a stack-based buffer overflow to occur which could result in remote code execution when a malicious SSD file is uploaded and...

7.8CVSS8.1AI score0.03873EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/21 12:0 a.m.7 views

The vulnerability of Schneider Electric EcoStruxure Power Build Rapsody software for designing and configuring electrical systems lies in buffer overflows in the stack. This allows a malicious actor to execute arbitrary code.

The vulnerability of Schneider Electric EcoStruxure Power Build Rapsody software for electrical system design and configuration is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created malicious file...

5.3CVSS6.3AI score0.00162EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.9 views

PT-2025-20839 · Schneider Electric · Ecostruxure Power Build +1

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A Stack-based Buffer Overflow issue exists that could allow local attackers to potentially execute arbitrary code when the end user opens a malicious project file provided by the attacker...

4.6CVSS6.9AI score0.00162EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.7 views

Schneider Electric EcoStruxure Power Build Rapsody 缓冲区错误漏洞

Schneider Electric EcoStruxure Power Build Rapsody is a power monitoring platform from Schneider Electric France. Schneider Electric EcoStruxure Power Build Rapsody suffers from a buffer error vulnerability that stems from the inclusion of a memory buffer in-bounds operation improperly restricted...

4.6CVSS7.5AI score0.00228EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/01/30 12:0 a.m.4 views

Schneider Electric EcoStruxure Power Build 路径遍历漏洞

Schneider Electric EcoStruxure Power Build is a power distribution management software from Schneider Electric, France. The software helps users design, build, commission, operate and maintain electrical installations. A path traversal vulnerability exists in versions of Schneider Electric...

9.8CVSS8.4AI score0.00776EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/03/03 12:0 a.m.6 views

The vulnerability of the online configuration software EcoStruxure Power Build lies in its ability to download unlimited amounts of dangerous files, allowing a hacker to execute arbitrary code.

The vulnerability of the online configuration software of EcoStruxure Power Build lies in the ability to download unlimited files of a malicious nature. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.03873EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/03/03 12:0 a.m.6 views

The vulnerability of the online configuration software EcoStruxure Power Build lies in its ability to download unlimited amounts of dangerous files, allowing a hacker to execute arbitrary code.

The vulnerability of the online configuration software of EcoStruxure Power Build lies in the ability to download unlimited files of a malicious nature. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.0347EPSS
Exploits0References4Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2021/02/10 12:0 a.m.41 views

Schneider Electric EcoStruxure Power Build SSD File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Power Build. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS5.2AI score0.0347EPSS
Exploits0References1
OSV
OSV
added 2021/01/26 6:16 p.m.6 views

CVE-2021-22698

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software V2.1.13 and prior that could allow a stack-based buffer overflow to occur which could result in remote code execution when a malicious SSD file is uploaded and...

7.8CVSS7.9AI score0.03873EPSS
Exploits0References3
Rows per page
Query Builder