3 matches found
CVE-2023-25548
A CWE-863: Incorrect Authorization vulnerability exists that could allow access to device credentials on specific DCE endpoints not being properly secured when a hacker is using a low privileged user. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...
CVE-2023-25548
The CVE affects Schneider Electric StruxureWare Data Center Expert (DCE) versions prior to 7.9.2. It describes a CWE-863 Incorrect Authorization vulnerability allowing access to device credentials on specific DCE endpoints when operated by a low-privileged user, with a network attack vector and l...
CVE-2023-25548
A CWE-863: Incorrect Authorization vulnerability exists that could allow access to device credentials on specific DCE endpoints not being properly secured when a hacker is using a low privileged user. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...