Lucene search
K

201 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-9849

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.02428EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:49 p.m.5 views

CVE-2021-22765

A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 Versions 3.0.0 and newer and PowerLogic EGX300 All Versions that could cause denial of service or remote code execution via a specially crafted HTTP packet...

9.8CVSS8.1AI score0.02708EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/17 12:0 a.m.3 views

Schneider Electric Power Logic Authorization Bypass Through User-Controlled Key (CVE-2024-10497)

CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an authorized attacker to modify values outside those defined by their privileges Elevation of Privileges when the attacker sends modified HTTPS requests to the device. This plugin only works with...

8.8CVSS5.5AI score0.00539EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/02/17 12:0 a.m.3 views

Schneider Electric Power Logic Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2024-10498)

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

8.8CVSS5.5AI score0.00539EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/01/21 12:0 a.m.7 views

The vulnerability of the microprogrammed software of the multi-circuit electrical voltage measuring instrument PowerLogic HDPM6000, related to the output operation exceeding the buffer boundaries in memory, allows a hacker to exploit their privileges.

The vulnerability of the microprogrammed software of the multi-circuit electrical voltage measuring instrument PowerLogic HDPM6000 lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to enhance their privileges by...

6.5CVSS5.9AI score0.0042EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/21 12:0 a.m.5 views

The vulnerability of the microprogrammed software of the multi-environmental electrical voltage measuring instrument PowerLogic HDPM6000, related to bypassing authentication by using a user-controlled key, allows intruders to escalate their privileges.

The vulnerability of the microprogrammed software of the multi-environmental electrical voltage measuring instrument PowerLogic HDPM6000 lies in the ability to bypass authentication by using a user-controlled key. Exploiting this vulnerability allows an attacker to enhance their privileges by...

9CVSS5.5AI score0.00539EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/21 12:0 a.m.7 views

The vulnerability of the microprogrammed software of the multi-environmental electrical voltage measuring instrument PowerLogic HDPM6000 lies in the lack of checks for the integrity of messages during transmission over communication channels. This allows attackers to exploit their privileges.

The vulnerability of the Pro-Face GP-Pro EX automation project creation software and the Pro-face Remote HMI remote monitoring software lies in the lack of checks for the integrity of messages during transmission over communication channels. Exploiting this vulnerability allows a malicious actor ...

7.3CVSS5.6AI score0.00166EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.4 views

Schneider Electric PowerLogic HDPM6000 缓冲区错误漏洞

The Schneider Electric PowerLogic HDPM6000 is a high density metering system from Schneider Electric France. A buffer error vulnerability exists in the Schneider Electric PowerLogic HDPM6000, which stems from the inclusion of a memory buffer in-bounds operationally unrestricted vulnerability that...

6.9CVSS6.6AI score0.0042EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.3 views

Schneider Electric PowerLogic HDPM6000 安全漏洞

The Schneider Electric PowerLogic HDPM6000 is a high-density metering system from Schneider Electric France. A security vulnerability exists in the Schneider Electric PowerLogic HDPM6000 that stems from the inclusion of an authorization bypass via user control key vulnerability that could allow a...

8.8CVSS6.5AI score0.00539EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/10 12:0 a.m.6 views

The vulnerability of the microprogrammed software of Schneider Electric PowerLogic PM5320, PM5340, and PM5341 lies in their uncontrollable resource consumption, which allows a intruder to trigger a service failure.

The vulnerability of the microprogramming software for Schneider Electric’s PowerLogic PM5320, PM5340, and PM5341 lies in the uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures by sending specially crafted IGMP packets...

7.8CVSS5.5AI score0.00776EPSS
Exploits0References7Affected Software3
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.11 views

Schneider Electric PowerLogic PM5300 Series Uncontrolled Resource Consumption (CVE-2024-9409)

CWE-400: An Uncontrolled Resource Consumption vulnerability exists that could cause the device to become unresponsive resulting in communication loss when a large amount of IGMP packets is present in the network. This plugin only works with Tenable.ot. Please visit...

8.7CVSS5.5AI score0.00776EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.5 views

Schneider Electric多款产品 资源管理错误漏洞

The Schneider Electric PowerLogic PM5320, among others, is a power and energy meter from Schneider Electric France. A resource management error vulnerability exists in various Schneider Electric products that stems from the presence of uncontrolled resource consumption, which could result in an...

8.7CVSS6.4AI score0.00776EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/29 12:0 a.m.3 views

PT-2024-10218 · Schneider Electric · Schneider Electric Powerlogic Hdpm6000

Name of the Vulnerable Software and Affected Versions: Schneider Electric PowerLogic HDPM6000 version 0.62.7 Description: The issue is related to an authorization bypass vulnerability that could allow an authorized attacker to modify values outside those defined by their privileges, potentially...

8.8CVSS7AI score0.00539EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2024/10/01 12:0 a.m.5 views

PT-2024-9992 · Schneider Electric · Powerlogic

Name of the Vulnerable Software and Affected Versions: Schneider Electric PowerLogic versions PM5320, PM5340, and PM5341 Description: An Uncontrolled Resource Consumption issue exists, potentially causing devices to become unresponsive and resulting in communication loss when a large amount of IG...

8.7CVSS7AI score0.00776EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2024/06/21 12:0 a.m.7 views

The vulnerability of the microprogramming software of Schneider Electric PowerLogic P5 relay protection devices, related to the use of cryptographic algorithms with defects, allows a intruder to cause malfunctions during maintenance, restart the device, or gain full control over the device.

The vulnerability of the microprogramming software of Schneider Electric PowerLogic P5 relay protection devices for electrical networks relates to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow attackers to cause malfunctions in the devic...

6.6CVSS5.5AI score0.00164EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.5 views

Schneider Electric PowerLogic Security Vulnerability

Schneider Electric PowerLogic is an industrial control device from Schneider Electric, a French company. Provides increased power factor to improve power quality and troubleshoot power failures to protect networks, devices, and operators. A security vulnerability exists in Schneider Electric...

6.8CVSS6.7AI score0.00164EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.21 views

Schneider Electric PowerLogic ION8650,ION8800 Download of Code Without Integrity Check (CVE-2023-5984)

A CWE-494 Download of Code Without Integrity Check vulnerability exists that could allow modified firmware to be uploaded when an authorized admin user begins a firmware update procedure which could result in full control over the device. This plugin only works with Tenable.ot. Please visit...

7.2CVSS5.4AI score0.00306EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.11 views

Schneider Electric PowerLogic ION8650,ION8800 Cross-site Scripting (CVE-2023-5985)

A CWE-79 Improper Neutralization of Input During Web Page Generation vulnerability exists that could cause compromise of a user's browser when an attacker with admin privileges has modified system values. This plugin only works with Tenable.ot. Please visit...

4.8CVSS5.3AI score0.00399EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/11/22 12:0 a.m.7 views

The vulnerability of Microprogrammed Software for Power Measurement and Energy Meters from Schneider Electric’s PowerLogic ION8650 and PowerLogic ION8800 arises from loading code without verifying its integrity. This allows a malicious actor to alter the firmware version with administrator privileges.

The vulnerability of Microprogrammed Software for Power Measurement Devices and Energy Meters from Schneider Electric’s PowerLogic ION8650 and PowerLogic ION8800 lies in the fact that code can be loaded without checking its integrity. Exploiting this vulnerability could allow an attacker to...

8.3CVSS5.6AI score0.00306EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/11/22 12:0 a.m.9 views

The vulnerability of Microprogrammed Software for Power Measurement and Energy Meters from Schneider Electric’s PowerLogic ION8650 and PowerLogic ION8800 stems from insufficient measures taken to protect the website structure. This allows attackers to perform cross-site scripting attacks.

The vulnerability of Microprogrammed Software for Power Measurement and Energy Meters from Schneider Electric’s PowerLogic ION8650 and PowerLogic ION8800 is related to the lack of protective measures for website structures. Exploiting this vulnerability could allow attackers to perform cross-site...

4.8CVSS5.3AI score0.00399EPSS
Exploits0References3
Rows per page
Query Builder