Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Schneider-electricEcostruxure Control Expert

8 matches found

CVE
CVEadded 2020/01/06 11:15 p.m.157 views

CVE-2019-6855

Incorrect Authorization vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M340 (all versions prior to V3.20) , and Modicon M580 (all versions prior to V3.10), which could cause a bypass of the authentication process between Ec...

7.5CVSS7.2AI score0.00191EPSS
CVE
CVEadded 2020/11/19 10:15 p.m.53 views

CVE-2020-7559

A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause a crash of the PLC simulator present in EcoStruxureª Control Expert software when receiving a specia...

7.5CVSS7.4AI score0.00505EPSS
CVE
CVEadded 2021/07/14 3:15 p.m.50 views

CVE-2021-22778

Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), and SCADAPack RemoteConnect for x70, all versi...

7.1CVSS6.7AI score0.00045EPSS
CVE
CVEadded 2020/11/19 10:15 p.m.47 views

CVE-2020-28211

A CWE-863: Incorrect Authorization vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause bypass of authentication when overwriting memory using a debugger.

7.8CVSS7.7AI score0.00055EPSS
CVE
CVEadded 2021/07/14 3:15 p.m.44 views

CVE-2021-22780

Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), and SCADAPack RemoteConnect for x70, all versi...

7.1CVSS6.8AI score0.00054EPSS
CVE
CVEadded 2020/11/19 10:15 p.m.42 views

CVE-2020-7538

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause a crash of the PLC simulator present in EcoStruxureª Control Expert software when receiving a specially crafted reques...

7.5CVSS7.5AI score0.00457EPSS
CVE
CVEadded 2024/02/14 5:15 p.m.35 views

CVE-2023-6409

CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause unauthorizedaccess to a project file protected with application password when opening the file withEcoStruxure Control Expert.

7.7CVSS7.5AI score0.00062EPSS
CVE
CVEadded 2024/02/14 5:15 p.m.26 views

CVE-2023-27975

CWE-522: Insufficiently Protected Credentials vulnerability exists that could cause unauthorizedaccess to the project file in EcoStruxure Control Expert when a local user tampers with thememory of the engineering workstation.

7.1CVSS6.7AI score0.00074EPSS