Schneider Electric Power Logic Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2024-10498)

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

Schneider Electric Power Logic Authorization Bypass Through User-Controlled Key (CVE-2024-10497)

CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an authorized attacker to modify values outside those defined by their privileges Elevation of Privileges when the attacker sends modified HTTPS requests to the device. This plugin only works with...

Schneider Electric PowerLogic HDPM6000 缓冲区错误漏洞

The Schneider Electric PowerLogic HDPM6000 is a high density metering system from Schneider Electric France. A buffer error vulnerability exists in the Schneider Electric PowerLogic HDPM6000, which stems from the inclusion of a memory buffer in-bounds operationally unrestricted vulnerability that...

Schneider Electric PowerLogic HDPM6000 安全漏洞

The Schneider Electric PowerLogic HDPM6000 is a high-density metering system from Schneider Electric France. A security vulnerability exists in the Schneider Electric PowerLogic HDPM6000 that stems from the inclusion of an authorization bypass via user control key vulnerability that could allow a...

PT-2024-10218 · Schneider Electric · Schneider Electric Powerlogic Hdpm6000

Name of the Vulnerable Software and Affected Versions: Schneider Electric PowerLogic HDPM6000 version 0.62.7 Description: The issue is related to an authorization bypass vulnerability that could allow an authorized attacker to modify values outside those defined by their privileges, potentially...

Schneider Electric PowerLogic 输入验证错误漏洞

Schneider Electric PowerLogic is an industrial control device from Schneider Electric, France. Provides increased power factor to improve power quality and troubleshoot power failures to protect networks, devices, and operators. An input validation error vulnerability exists in Schneider Electric...