Easergy Builder Security Vulnerabilities and Issues — Easergy Builder CVE List

Lucene search

Schneider-electricEasergy Builder

6 matches found

CVE•added 2020/07/23 9:15 p.m.•44 views

CVE-2020-7517

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to read user credentials.

5.5CVSS5.3AI score0.00028EPSS

CVE•added 2020/07/23 9:15 p.m.•40 views

CVE-2020-7515

A CWE-321: Use of hard-coded cryptographic key stored in cleartext vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker to decrypt a password.

7.8CVSS7.5AI score0.00047EPSS

CVE•added 2020/07/23 9:15 p.m.•40 views

CVE-2020-7516

A CWE-316: Cleartext Storage of Sensitive Information in Memory vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker access to login credentials.

7.8CVSS7.4AI score0.00026EPSS

CVE•added 2020/07/23 9:15 p.m.•40 views

CVE-2020-7519

A CWE-521: Weak Password Requirements vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to compromise a user account.

7.5CVSS7.3AI score0.00276EPSS

CVE•added 2020/07/23 9:15 p.m.•38 views

CVE-2020-7518

A CWE-20: Improper input validation vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to modify project configuration files.

7.5CVSS7.4AI score0.00241EPSS

CVE•added 2020/07/23 9:15 p.m.•36 views

CVE-2020-7514

A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker access to the authorization credentials for a device and gain full access.

7.8CVSS7.7AI score0.00027EPSS