Known Vulnerabilities for products from Schneider-electric
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Schneider-electric".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Schneider-electric can be found at device.report : Schneider-electric
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-24324 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2023-02-01 | 2023-02-08 |
| CVE-2022-24323 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.9 - MEDIUM | 2022-03-09 | 2022-03-12 |
| CVE-2022-24322 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.9 - MEDIUM | 2022-03-09 | 2022-03-12 |
| CVE-2022-24321 | A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause Denial of Service again... | 7.5 - HIGH | 2022-02-09 | 2022-02-16 |
| CVE-2022-24320 | A CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communication... | 5.9 - MEDIUM | 2022-02-09 | 2022-04-22 |
| CVE-2022-24319 | A CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communication... | 5.9 - MEDIUM | 2022-02-09 | 2022-04-22 |
| CVE-2022-24318 | A CWE-326: Inadequate Encryption Strength vulnerability exists that could cause non-encrypted communication with the server w... | 7.5 - HIGH | 2022-02-09 | 2022-02-17 |
| CVE-2022-24317 | A CWE-862: Missing Authorization vulnerability exists that could cause information exposure when an attacker sends a specific... | 7.5 - HIGH | 2022-02-09 | 2022-02-17 |
| CVE-2022-24316 | A CWE-665: Improper Initialization vulnerability exists that could cause information exposure when an attacker sends a specia... | 7.5 - HIGH | 2022-02-09 | 2022-02-16 |
| CVE-2022-24315 | A CWE-125: Out-of-bounds Read vulnerability exists that could cause denial of service when an attacker repeatedly sends a spe... | 7.5 - HIGH | 2022-02-09 | 2022-02-16 |
| CVE-2022-24314 | A CWE-125: Out-of-bounds Read vulnerability exists that could cause memory leaks potentially resulting in denial of service w... | 7.5 - HIGH | 2022-02-09 | 2022-02-16 |
| CVE-2022-24313 | A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow pot... | 9.8 - CRITICAL | 2022-02-09 | 2022-02-17 |
| CVE-2022-24312 | A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of a... | 9.8 - CRITICAL | 2022-02-09 | 2022-02-17 |
| CVE-2022-24311 | A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of a... | 9.8 - CRITICAL | 2022-02-09 | 2022-02-17 |
| CVE-2022-24310 | A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer overflow, leading to denial... | 9.8 - CRITICAL | 2022-02-09 | 2022-02-17 |
| CVE-2022-22813 | A CWE-798: Use of Hard-coded Credentials vulnerability exists. If an attacker were to obtain the TLS cryptographic key and ta... | 9.8 - CRITICAL | 2022-02-09 | 2022-02-28 |
| CVE-2022-22812 | A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that coul... | 6.1 - MEDIUM | 2022-02-09 | 2022-02-16 |
| CVE-2022-22811 | A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists that could induce users to perform unintended actions, lead... | 8.1 - HIGH | 2022-02-09 | 2023-11-07 |
| CVE-2022-22810 | A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that could allow an attacker to man... | 9.8 - CRITICAL | 2022-02-09 | 2022-02-16 |
| CVE-2022-22809 | A CWE-306: Missing Authentication for Critical Function vulnerability exists that could allow modifications of the touch conf... | 5.3 - MEDIUM | 2022-02-09 | 2023-02-22 |
Known software with vulnerabilities from Schneider-electric
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Schneider-electric | 140cpu31110 | - |
| Operating System | Schneider-electric | 140cpu31110 Firmware | - |
| Hardware | Schneider-electric | 140cpu31110c | - |
| Operating System | Schneider-electric | 140cpu31110c Firmware | - |
| Hardware | Schneider-electric | 140cpu43412u | - |
| Operating System | Schneider-electric | 140cpu43412u Firmware | - |
| Hardware | Schneider-electric | 140cpu43412uc | - |
| Operating System | Schneider-electric | 140cpu43412uc Firmware | - |
| Hardware | Schneider-electric | 140cpu65150 | - |
| Operating System | Schneider-electric | 140cpu65150 Firmware | - |
| Hardware | Schneider-electric | 140cpu65150c | - |
| Operating System | Schneider-electric | 140cpu65150c Firmware | - |
| Hardware | Schneider-electric | 140cpu65160 | - |
| Operating System | Schneider-electric | 140cpu65160 Firmware | - |
| Hardware | Schneider-electric | 140cpu65160c | - |
| Operating System | Schneider-electric | 140cpu65160c Firmware | - |
| Hardware | Schneider-electric | 140cpu65160s | - |
| Operating System | Schneider-electric | 140cpu65160s Firmware | - |
| Hardware | Schneider-electric | 140cpu65260 | - |
| Operating System | Schneider-electric | 140cpu65260 Firmware | - |