Known Vulnerabilities for products from Se
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Se".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Se can be found at device.report : Se
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-22784 | A CWE-306: Missing Authentication for Critical Function vulnerability exists in C-Bus Toolkit v1.15.8 and prior that could al... | 5.7 - MEDIUM | 2021-07-21 | 2022-01-31 |
| CVE-2021-22777 | A CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause code execution by opening a malicious proj... | 7.8 - HIGH | 2021-07-21 | 2022-01-31 |
| CVE-2021-22768 | ** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0... | 9.8 - CRITICAL | 2021-06-11 | 2023-11-07 |
| CVE-2021-22767 | ** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0... | 9.8 - CRITICAL | 2021-06-11 | 2023-11-07 |
| CVE-2021-22766 | ** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0... | 7.5 - HIGH | 2021-06-11 | 2023-11-07 |
| CVE-2021-22765 | ** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0... | 9.8 - CRITICAL | 2021-06-11 | 2023-11-07 |
| CVE-2021-22725 | A CVE-352 Cross-Site Request Forgery (CSRF) vulnerability exists that could allow an attacker to impersonate the user or carr... | 8.8 - HIGH | 2022-01-28 | 2022-09-28 |
| CVE-2021-22724 | A CVE-352 Cross-Site Request Forgery (CSRF) vulnerability exists that could allow an attacker to impersonate the user or carr... | 8.8 - HIGH | 2022-01-28 | 2022-09-28 |
| CVE-2021-22714 | A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400,... | 9.8 - CRITICAL | 2021-03-11 | 2022-02-03 |
| CVE-2021-22713 | A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650,... | 7.5 - HIGH | 2021-03-11 | 2022-02-03 |
| CVE-2021-22705 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause denial of servi... | 7.8 - HIGH | 2021-05-26 | 2022-01-31 |
| CVE-2021-22703 | A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/... | 7.5 - HIGH | 2021-02-19 | 2022-02-03 |
| CVE-2021-22702 | A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx,... | 7.5 - HIGH | 2021-02-19 | 2022-02-03 |
| CVE-2021-22701 | A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, I... | 4.5 - MEDIUM | 2021-02-19 | 2022-02-03 |
| CVE-2021-22699 | Improper Input Validation vulnerability exists in Modicon M241/M251 logic controllers firmware prior to V5.1.9.1 that could c... | 7.5 - HIGH | 2021-05-26 | 2022-02-03 |
| CVE-2021-22698 | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody soft... | 7.8 - HIGH | 2021-01-26 | 2022-01-31 |
| CVE-2021-22697 | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody soft... | 7.8 - HIGH | 2021-01-26 | 2022-01-31 |
| CVE-2020-28220 | A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Modicon M258 Firmw... | 6.8 - MEDIUM | 2020-12-11 | 2022-02-03 |
| CVE-2020-28214 | A CWE-760: Use of a One-Way Hash with a Predictable Salt vulnerability exists in Modicon M221 (all references, all versions),... | 5.5 - MEDIUM | 2020-12-11 | 2022-02-03 |
| CVE-2020-28213 | A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (no... | 8.8 - HIGH | 2020-11-19 | 2022-01-31 |
Known software with vulnerabilities from Se
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Se | Ecostruxure Building Operation | 2.0 |
| Application | Se | Ecostruxure Control Expert | - |
| Application | Se | Ecostruxure It Gateway | 1.5.0.66 |
| Application | Se | Ecostruxure Power Build - Rapsody | - |
| Application | Se | Enterprise Server Installer | 1.9 |
| Operating System | Se | Modicon M218 Firmware | 4.3 |
| Hardware | Se | Mtn6260-0310 | - |
| Operating System | Se | Mtn6260-0310 Firmware | 1.4.2 |
| Hardware | Se | Mtn6260-0315 | - |
| Operating System | Se | Mtn6260-0315 Firmware | 1.4.2 |
| Hardware | Se | Mtn6260-0410 | - |
| Operating System | Se | Mtn6260-0410 Firmware | 1.4.2 |
| Hardware | Se | Mtn6260-0415 | - |
| Operating System | Se | Mtn6260-0415 Firmware | 1.4.2 |
| Hardware | Se | Mtn6501-0001 | - |
| Operating System | Se | Mtn6501-0001 Firmware | 1.4.2 |
| Hardware | Se | Mtn6501-0002 | - |
| Operating System | Se | Mtn6501-0002 Firmware | 1.4.2 |
| Application | Se | Operator Terminal Expert Runtime | - |
| Application | Se | Os Loader | - |