CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

EUVD-2024-27692

Malicious code in bioql PyPI...

The software for configuring, monitoring, and controlling industrial equipment, Easergy Studio, has vulnerabilities related to insecure management of privileges. This allows attackers to escalate their privileges.

The vulnerability of the Easergy Studio software for configuring, monitoring, and controlling industrial equipment is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to enhance their privileges by modifying binary data...

Schneider Electric Easergy Studio 安全漏洞

Schneider Electric Easergy Studio is an IED support software for setup and configuration from Schneider Electric France. A security vulnerability exists in Schneider Electric Easergy Studio version 9.3.1 and prior versions, which arises from improper privilege management and could result in...

CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

Schneider Electric Easergy Studio Code Issue Vulnerability

Schneider Electric Easergy Studio is an IED support software for setup and configuration from Schneider Electric France. A code issue vulnerability exists in Schneider Electric Easergy Studio v9.3.3 and prior versions, which stems from an unquoted search path or element vulnerability that could...

PT-2024-2668 · Schneider Electric · Easergy Studio

Name of the Vulnerable Software and Affected Versions: Easergy Studio affected versions not specified Description: A vulnerability exists in Easergy Studio due to an unquoted search path or element, which could cause privilege escalation when a valid user replaces a trusted file name on the syste...

The vulnerability of the Easergy Studio software for configuring, monitoring, and controlling industrial equipment lies in the absence of quotation marks when writing elements or search paths. This allows a malicious individual to exploit their privileges.

The vulnerability of the Easergy Studio software for configuring, monitoring, and controlling industrial equipment is related to the absence of quotation marks in the wording of elements or search paths. Exploiting this vulnerability can allow attackers to increase their privileges...

Schneider Electric Easergy Studio InitializeChannel Deserialization of Untrusted Data Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Schneider Electric Easergy Studio. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within th...

The software for configuring, monitoring, and controlling industrial equipment, Easergy Studio, has a vulnerability related to the restoration of unreliable data in memory. This vulnerability allows an intruder to gain increased privileges.

The vulnerability of the Easergy Studio software for configuring, monitoring, and controlling industrial equipment is related to the restoration of unreliable data in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

Schneider Electric Easergy Studio

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Schneider Electric Equipment : Easergy Studio Vulnerability : Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain full control of a...

Schneider Electric Easergy Studio Code Issue Vulnerability

Schneider Electric Easergy Studio is an IED support software for setup and configuration from Schneider Electric France. A code issue vulnerability exists in versions prior to Schneider Electric Easergy Studio v9.3.5 that stems from the presence of untrusted data deserialization, which could allo...