Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.7 views

CVE-2021-22772

A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T200 Modbus SC2-04MOD-07000100 and earlier, Easergy T200 IEC104 SC2-04IEC-07000100 and earlier, and Easergy T200 DNP3 SC2-04DNP-07000102 and earlier that could cause unauthorized operation when authentication ...

9.8CVSS7.1AI score0.01541EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-9907

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01541EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.5 views

Schneider Electric Easergy T200 Security Vulnerability

Schneider Electric Easergy T200 is an intelligent digital protection terminal from Schneider Electric France. It is mainly used for protection and control in power systems to help monitor and protect power equipment from faults and abnormal operations, thus ensuring stable operation of the power...

7.5CVSS6.7AI score0.00513EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.3 views

Schneider Electric Easergy T200 Security Vulnerability

Schneider Electric Easergy T200 is an intelligent digital protection terminal from Schneider Electric France. It is mainly used for protection and control in power systems to help monitor and protect power equipment from faults and abnormal operations, thus ensuring stable operation of the power...

9.8CVSS6.8AI score0.00755EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.4 views

Schneider Electric Easergy T200 Cross-Site Scripting Vulnerability

Schneider Electric Easergy T200 is an intelligent digital protection terminal from Schneider Electric France. It is mainly used for protection and control in power systems, helping to monitor and protect power equipment from faults and abnormal operations, thus ensuring the stable operation of th...

8.2CVSS6.2AI score0.0047EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/12 12:0 a.m.8 views

PT-2024-2037 · Schneider Electric · Schneider Electric Easergy T200

Name of the Vulnerable Software and Affected Versions: Schneider Electric Easergy T200 affected versions not specified Description: The issue is related to an improper restriction of excessive authentication attempts, which could allow an attacker to conduct brute-force attacks against the login...

10CVSS7.4AI score0.00755EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/03/12 12:0 a.m.7 views

PT-2024-2039 · Schneider Electric · Schneider Electric Easergy T200

Name of the Vulnerable Software and Affected Versions: Schneider Electric Easergy T200 affected versions not specified Description: A Files or Directories Accessible to External Parties issue exists, potentially allowing unauthenticated files and logs exfiltration and download of files when an...

7.8CVSS7.3AI score0.00513EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/03/12 12:0 a.m.7 views

The vulnerability of the microprogramming software of Schneider Electric Easergy T200 remote control devices allows a intruder to gain unauthorized access to protected information.

The vulnerability of the microprogramming software used in Schneider Electric Easergy T200 remote control devices lies in the use of files and directories accessible to external parties. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...

7.8CVSS5.5AI score0.00513EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/03/12 12:0 a.m.5 views

The vulnerability of the microprogramming software of Schneider Electric Easergy T200 remote control devices allows a intruder to gain unauthorized access to the system.

The vulnerability of the microprogramming software of Schneider Electric Easergy T200 remote control devices is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability could allow an intruder to gain unauthorized access to the system...

10CVSS5.6AI score0.00755EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/03/12 12:0 a.m.4 views

The vulnerability of the microprogramming software of Schneider Electric Easergy T200 remote control devices allows a hacker to carry out cross-site scripting attacks.

The vulnerability of the microprogramming software of Schneider Electric Easergy T200 remote control devices is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to carry out a cross-site scripting attack remotely...

8.5CVSS5.2AI score0.0047EPSS
Exploits0References2
NVD
NVD
added 2021/07/21 3:15 p.m.17 views

CVE-2021-22772

A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T200 Modbus SC2-04MOD-07000100 and earlier, Easergy T200 IEC104 SC2-04IEC-07000100 and earlier, and Easergy T200 DNP3 SC2-04DNP-07000102 and earlier that could cause unauthorized operation when authentication ...

9.8CVSS0.01541EPSS
Exploits0References1
OSV
OSV
added 2021/07/21 3:15 p.m.4 views

CVE-2021-22772

A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T200 Modbus SC2-04MOD-07000100 and earlier, Easergy T200 IEC104 SC2-04IEC-07000100 and earlier, and Easergy T200 DNP3 SC2-04DNP-07000102 and earlier that could cause unauthorized operation when authentication ...

9.8CVSS7.3AI score
Exploits0References1
Prion
Prion
added 2021/07/21 3:15 p.m.24 views

Authentication flaw

A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T200 Modbus SC2-04MOD-07000100 and earlier, Easergy T200 IEC104 SC2-04IEC-07000100 and earlier, and Easergy T200 DNP3 SC2-04DNP-07000102 and earlier that could cause unauthorized operation when authentication ...

7.5CVSS9.4AI score0.01541EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2021/07/21 10:41 a.m.50 views

CVE-2021-22772

CVE-2021-22772 affects Schneider Electric Easergy T200 series (Modbus SC2-04MOD-07000100, IEC104 SC2-04IEC-07000100, DNP3 SC2-04DNP-07000102 and earlier). Documented root cause: CWE-306 – Missing Authentication for Critical Function, enabling unauthorized operation when authentication is bypassed...

9.8CVSS9.4AI score0.01541EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/07/21 10:41 a.m.23 views

CVE-2021-22772

A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T200 Modbus SC2-04MOD-07000100 and earlier, Easergy T200 IEC104 SC2-04IEC-07000100 and earlier, and Easergy T200 DNP3 SC2-04DNP-07000102 and earlier that could cause unauthorized operation when authentication ...

9.7AI score0.01541EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/21 12:0 a.m.3 views

Schneider Electric Easergy T200产品访问控制错误漏洞

Schneider-electric Schneider Electric Easergy T200 is a remote control terminal for medium/low voltage substations from Schneider-electric, France. An access control error vulnerability exists in several Schneider Electric products due to a lack of valid authorized operation of the product and...

9.8CVSS8.3AI score0.01541EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2021/07/13 8:4 p.m.83 views

Unpatched, Critical RCE Bug Allows Utility Takeovers

A critical remote code-execution RCE vulnerability in Schneider Electric programmable logic controllers PLCs has come to light, which allows unauthenticated cyberattackers to gain root-level control over PLCs used in manufacturing, building automation, healthcare and enterprise environments. If...

10CVSS10AI score0.64612EPSS
Exploits2References10
Pen Test Partners Blog
Pen Test Partners Blog
added 2021/01/07 6:10 a.m.157 views

Schneider T200 RTU vulnerabilities

A few CVEs published in a Schneider T300 RTU recently jogged my memory. I went back 8 years to 2012 to dig out a disclosure we made to Schneider via an operator. And there it was, similar probably identical vulnerabilities in its predecessor, the Easergy T200. As we were working via the operator,...

6.6AI score
Exploits0
Rows per page
Query Builder