Schneider Electric RemoteConnect

CPE Details

Schneider Electric RemoteConnect
schneider-electric
remoteconnect
-
2022-04-21
12h56 +00:00
2022-04-22
16h04 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:schneider-electric:remoteconnect:-:*:*:*:*:*:*:*

Informations

Vendor

schneider-electric

Product

remoteconnect

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-26507 2022-04-14 10h04 +00:00 A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828, CVE-2021-21829, or CVE-2021-21830. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
9.8
Critical
CVE-2021-22797 2022-03-28 14h25 +00:00 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal) vulnerability exists that could cause malicious script to be deployed in an unauthorized location and may result in code execution on the engineering workstation when a malicious project file is loaded in the engineering software. Affected Product: EcoStruxure Control Expert (V15.0 SP1 and prior, including former Unity Pro), EcoStruxure Process Expert (2020 and prior, including former HDCS), SCADAPack RemoteConnect for x70 (All versions)
7.8
High