Lucene search
K

71 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:49 a.m.9 views

CVE-2021-22794

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could cause remote code execution. Affected Product: StruxureWare Data Center Expert V7.8.1 and prior...

9.8CVSS7.5AI score0.02083EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:49 a.m.9 views

CVE-2021-22795

A CWE-78 Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability exists that could cause remote code execution when performed over the network. Affected Product: StruxureWare Data Center Expert V7.8.1 and prior...

9.8CVSS7.7AI score0.03083EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2021-9930

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.03083EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-29505

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00392EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-29507

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.0085EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-29502

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01182EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-29504

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.00502EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-29506

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00609EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-29503

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00397EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-29499

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00935EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-29501

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01182EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2021-9929

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.02083EPSS
Exploits0References1
CNVD
CNVD
added 2023/04/21 12:0 a.m.14 views

Schneider Electric StruxureWare Data Center Expert Access Control Error Vulnerability

Schneider Electric StruxureWare Data Center Expert is a monitoring software from the French company Schneider Electric Schneider Electric. It is suitable for a variety of organizations to monitor their company-wide power, cooling, security, and environment. An access control error vulnerability...

8.1CVSS6.7AI score0.00502EPSS
Exploits0References1
CNVD
CNVD
added 2023/04/21 12:0 a.m.11 views

Schneider Electric StruxureWare Data Center Expert Access Control Error Vulnerability (CNVD-2023-37594)

Schneider Electric StruxureWare Data Center Expert is a monitoring software from the French company Schneider Electric Schneider Electric. It is suitable for a variety of organizations to monitor their company-wide power, cooling, security, and environment. An access control error vulnerability...

8.8CVSS7.6AI score0.00935EPSS
Exploits0References1
NVD
NVD
added 2023/04/18 9:15 p.m.27 views

CVE-2023-25551

A CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists on a DCE file upload endpoint when tampering with parameters over HTTP. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

6.1CVSS6.3AI score0.00397EPSS
Exploits0References1
NVD
NVD
added 2023/04/18 9:15 p.m.31 views

CVE-2023-25547

A CWE-863: Incorrect Authorization vulnerability exists that could allow remote code execution on upload and install packages when a hacker is using a low privileged user account. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

8.8CVSS8.9AI score0.00935EPSS
Exploits0References1
NVD
NVD
added 2023/04/18 9:15 p.m.24 views

CVE-2023-25553

A CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists on a DCE endpoint through the logging capabilities of the webserver. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

6.1CVSS6.3AI score0.00392EPSS
Exploits0References1
OSV
OSV
added 2023/04/18 9:15 p.m.4 views

CVE-2023-25551

A CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists on a DCE file upload endpoint when tampering with parameters over HTTP. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

6.1CVSS5.8AI score0.00397EPSS
Exploits0References1
NVD
NVD
added 2023/04/18 9:15 p.m.22 views

CVE-2023-25550

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that allows remote code execution via the “hostname” parameter when maliciously crafted hostname syntax is entered. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

9.8CVSS8.1AI score0.01182EPSS
Exploits0References1
NVD
NVD
added 2023/04/18 9:15 p.m.15 views

CVE-2023-25554

A CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability exists that allows a local privilege escalation on the appliance when a maliciously crafted Operating System command is entered on the device. Affected products: StruxureWare Data Cent...

7.8CVSS7.9AI score0.00609EPSS
Exploits0References1
Rows per page
Query Builder