Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Schneider-electricEcostruxure Control Expert

4 matches found

CVE
CVEadded 2020/12/11 1:15 a.m.56 views

CVE-2020-7560

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStruxure™ Control Expert) (all versions), that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Con...

8.6CVSS8.7AI score0.00418EPSS
CVE
CVEadded 2023/04/18 5:15 p.m.43 views

CVE-2023-27976

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could causeremote code execution when a valid user visits a malicious link provided through the webendpoints. Affected Products: EcoStruxure Control Expert (V15.1 and above)

8.8CVSS8.8AI score0.00426EPSS
CVE
CVEadded 2020/11/19 10:15 p.m.39 views

CVE-2020-28213

A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when sending specially crafted requests over Modbus.

8.8CVSS8.8AI score0.00349EPSS
CVE
CVEadded 2024/02/14 5:15 p.m.36 views

CVE-2023-6408

CWE-924: Improper Enforcement of Message Integrity During Transmission in aCommunication Channel vulnerability exists that could cause a denial of service and loss ofconfidentiality, integrity of controllers when conducting a Man in the Middle attack.

8.1CVSS7.8AI score0.00157EPSS