Known Vulnerabilities for products from Schneider Electric
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Schneider Electric".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Schneider Electric can be found at device.report : Schneider Electric
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-7523 json | Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver (see security notification for ... | 7.8 - HIGH | 2020-08-31 | 2021-06-04 |
| CVE-2018-7238 json | A buffer overflow vulnerability exist in the web-based GUI of Schneider Electric's Pelco Sarix Professional in all firmware v... | 9.8 - CRITICAL | 2018-03-09 | 2022-02-02 |
| CVE-2018-7237 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 9.1 - CRITICAL | 2018-03-09 | 2022-02-02 |
| CVE-2018-7236 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 8.1 - HIGH | 2018-03-09 | 2022-02-02 |
| CVE-2018-7235 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 7.5 - HIGH | 2018-03-09 | 2022-02-02 |
| CVE-2018-7234 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 7.5 - HIGH | 2018-03-09 | 2022-02-02 |
| CVE-2018-7233 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 9.8 - CRITICAL | 2018-03-09 | 2022-02-02 |
| CVE-2018-7232 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 9.8 - CRITICAL | 2018-03-09 | 2022-02-02 |
| CVE-2018-7231 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 9.8 - CRITICAL | 2018-03-09 | 2022-02-02 |
| CVE-2018-7230 json | A XML external entity (XXE) vulnerability exists in the import.cgi of the web interface component of the Schneider Electric's... | 8.8 - HIGH | 2018-03-09 | 2022-02-02 |
| CVE-2018-7229 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 9.8 - CRITICAL | 2018-03-09 | 2022-02-02 |
| CVE-2018-7228 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 9.8 - CRITICAL | 2018-03-09 | 2022-02-02 |
| CVE-2018-7227 json | A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could... | 5.3 - MEDIUM | 2018-03-09 | 2022-02-02 |
| CVE-2017-9631 json | A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 a... | 7.5 - HIGH | 2017-07-07 | 2023-02-01 |
| CVE-2017-9629 json | A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.... | 9.8 - CRITICAL | 2017-07-07 | 2023-02-02 |
| CVE-2017-9627 json | An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.42... | 8.6 - HIGH | 2017-07-07 | 2023-02-01 |
| CVE-2017-5157 json | An issue was discovered in Schneider Electric homeLYnk Controller, LSS100100, all versions prior to V1.5.0. The homeLYnk cont... | 6.1 - MEDIUM | 2017-02-13 | 2022-01-31 |
| CVE-2014-9188 json | Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to e... | Not Provided | 2014-12-27 | 2026-05-06 |
| CVE-2014-8514 json | Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to e... | Not Provided | 2014-12-27 | 2026-05-06 |
| CVE-2014-8513 json | Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to e... | Not Provided | 2014-12-27 | 2026-05-06 |
Known software with vulnerabilities from Schneider Electric
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Schneider Electric | Indusoft Web Studio | 7.1 |
| Hardware | Schneider Electric | Sage 1410 | - |
| Hardware | Schneider Electric | Sage 1430 | - |
| Hardware | Schneider Electric | Sage 1450 | - |
| Hardware | Schneider Electric | Sage 2300 | - |
| Hardware | Schneider Electric | Sage 2400 | - |
| Hardware | Schneider Electric | Sage 3030m | - |
| Hardware | Schneider Electric | Sage Landac Ii-2 | - |
| Hardware | Schneider Electric | Struxureware Building Operations Automation Server As | - |
| Hardware | Schneider Electric | Struxureware Building Operations Automation Server As-p | - |
| Operating System | Schneider Electric | Struxureware Building Operations Automation Server As-p Firmware | 1.7 |
| Operating System | Schneider Electric | Struxureware Building Operations Automation Server As Firmware | 1.7 |
| Operating System | Schneider Electric | Telvent Rtu Firmware | c3413-500-001d3 |
| Application | Schneider Electric | U.motion | 1.3.4 |
| Application | Schneider Electric | Wonderware Archestra Logger | 2017.426.2307.1 |
| Application | Schneider Electric | Wonderware Intouch 2014 | 7.1 |