CVE-2019-13537

The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash...

The vulnerability of the Power Monitoring Expert, Power Operation, and Power SCADA Operation software allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Power Monitoring Expert, Power Operation, and Power SCADA Operation software relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks from a remote location...

PT-2024-8122 · Unknown · Power Scada Operation +2

Name of the Vulnerable Software and Affected Versions: Power Monitoring Expert, Power Operation, Power SCADA Operation affected versions not specified Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting XSS. This...

Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Schneider Electric Equipment : EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation with Advanced Reports, EcoStruxure Power SCADA Operation with Advanced Reports Vulnerability :...

Schneider Electric Power Scada and EcoStruxure Power Monitoring Expert Security Vulnerabilities

Schneider Electric EcoStruxure Power Monitoring Expert and Schneider Electric Power Scada are both products of Schneider Electric, a French company. Schneider Electric EcoStruxure Power Monitoring Expert is an appliance for power distribution monitoring in IoT environments, and Schneider Electric...

CVE-2019-13537

The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash...

Buffer overflow

The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash...

CVE-2019-13537

The CVE-2019-13537 issue affects the IEC870IP driver used in AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation. The vulnerability is a stack-based buffer overflow in the IEC870IP driver (versions 4.14.02 and earlier) that could lead to a server-side crash. Red H...

CVE-2019-13537

The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash...

AVEVA Vijeo Citect and Citect SCADA (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit --------- Begin Update A Part 1 of 5 --------- Vendor: AVEVA and Schneider Electric Equipment: AVEVA’s Vijeo Citect and Citect SCADA; Schneider Electric’s Power SCADA Operation --------- End Update A Part...

CVE-2018-7797

A URL redirection vulnerability exists in Power Monitoring Expert, Energy Expert formerly Power Manager - EcoStruxure Power Monitoring Expert PME v8.2 all editions, EcoStruxure Energy Expert 1.3 formerly Power Manager, EcoStruxure Power SCADA Operation PSO 8.2 Advanced Reports and Dashboards...

CVE-2018-7797

A URL redirection vulnerability exists in Power Monitoring Expert, Energy Expert formerly Power Manager - EcoStruxure Power Monitoring Expert PME v8.2 all editions, EcoStruxure Energy Expert 1.3 formerly Power Manager, EcoStruxure Power SCADA Operation PSO 8.2 Advanced Reports and Dashboards...