Lucene search
+L

4 matches found

OSV
OSV
added 2023/04/18 9:15 p.m.6 views

CVE-2023-25549

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

9.8CVSS7.9AI score0.01182EPSS
Exploits0References1
NVD
NVD
added 2023/04/18 9:15 p.m.24 views

CVE-2023-25549

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

9.8CVSS8.1AI score0.01182EPSS
Exploits0References1
CVE
CVE
added 2023/04/18 8:35 p.m.59 views

CVE-2023-25549

Schneider Electric StruxureWare Data Center Expert (versions prior to 7.9.2) contains a CWE-94 code-injection flaw that allows remote code execution via a parameter of the DCE network settings endpoint. Exploitation details are not elaborated in the provided documents, but the issue is described ...

9.8CVSS9.7AI score0.01182EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/18 8:35 p.m.12 views

CVE-2023-25549

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

7.2CVSS9.9AI score0.01182EPSS
Exploits0References1
Rows per page
Query Builder