Ecostruxure Power Monitoring Expert@9.0 Security Vulnerabilities and Issues — Ecostruxure Power Monitoring Expert@9.0 CVE List

Lucene search

Schneider-electricEcostruxure Power Monitoring Expert9.0

4 matches found

CVE•added 2018/12/17 10:29 p.m.•43 views

CVE-2018-7797

A URL redirection vulnerability exists in Power Monitoring Expert, Energy Expert (formerly Power Manager) - EcoStruxure Power Monitoring Expert (PME) v8.2 (all editions), EcoStruxure Energy Expert 1.3 (formerly Power Manager), EcoStruxure Power SCADA Operation (PSO) 8.2 Advanced Reports and Dashboa...

6.1CVSS6.1AI score0.00173EPSS

CVE•added 2020/12/01 3:15 p.m.•40 views

CVE-2020-7545

A CWE-284:Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow for arbitrary code execution on the server when an authorized user access an affected webpage.

7.2CVSS7.3AI score0.00462EPSS

CVE•added 2020/12/01 3:15 p.m.•35 views

CVE-2020-7546

A CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow an attacker to perform actions on behalf of the authorized user when...

5.4CVSS5.5AI score0.00302EPSS

CVE•added 2020/12/01 3:15 p.m.•35 views

CVE-2020-7547

A CWE-284: Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow a user the ability to perform actions via the web interface at a higher privilege level.

8.8CVSS8.6AI score0.00357EPSS