CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-7237

A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow a remote attacker to delete arbitrary system file due to lack of validation of the /login/bin/set_param to the file name with the value of 'system.delete.sd_file'

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.2%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

Products affected by CVE-2018-7237

Schneider-Electric » Ibp1110-1er » Version: N/A

cpe:2.3:h:schneider-electric:ibp1110-1er:-
Schneider-Electric » Ibp219-1er » Version: N/A

cpe:2.3:h:schneider-electric:ibp219-1er:-
Schneider-Electric » Ibp319-1er » Version: N/A

cpe:2.3:h:schneider-electric:ibp319-1er:-
Schneider-Electric » Ibp519-1er » Version: N/A

cpe:2.3:h:schneider-electric:ibp519-1er:-
Schneider-Electric » Ibps110-1er » Version: N/A

cpe:2.3:h:schneider-electric:ibps110-1er:-
Schneider-Electric » Imp1110-1 » Version: N/A

cpe:2.3:h:schneider-electric:imp1110-1:-
Schneider-Electric » Imp1110-1e » Version: N/A

cpe:2.3:h:schneider-electric:imp1110-1e:-
Schneider-Electric » Imp1110-1er » Version: N/A

cpe:2.3:h:schneider-electric:imp1110-1er:-
Schneider-Electric » Imp219-1 » Version: N/A

cpe:2.3:h:schneider-electric:imp219-1:-
Schneider-Electric » Imp219-1e » Version: N/A

cpe:2.3:h:schneider-electric:imp219-1e:-
Schneider-Electric » Imp219-1er » Version: N/A

cpe:2.3:h:schneider-electric:imp219-1er:-
Schneider-Electric » Imp319-1 » Version: N/A

cpe:2.3:h:schneider-electric:imp319-1:-
Schneider-Electric » Imp319-1e » Version: N/A

cpe:2.3:h:schneider-electric:imp319-1e:-
Schneider-Electric » Imp319-1er » Version: N/A

cpe:2.3:h:schneider-electric:imp319-1er:-
Schneider-Electric » Imp519-1 » Version: N/A

cpe:2.3:h:schneider-electric:imp519-1:-
Schneider-Electric » Imp519-1e » Version: N/A

cpe:2.3:h:schneider-electric:imp519-1e:-
Schneider-Electric » Imp519-1er » Version: N/A

cpe:2.3:h:schneider-electric:imp519-1er:-
Schneider-Electric » Imps110-1e » Version: N/A

cpe:2.3:h:schneider-electric:imps110-1e:-
Schneider-Electric » Imps110-1er » Version: N/A

cpe:2.3:h:schneider-electric:imps110-1er:-
Schneider-Electric » Mps110-1 » Version: N/A

cpe:2.3:h:schneider-electric:mps110-1:-
Schneider-Electric » Ibp1110-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:ibp1110-1er_firmware:*
Schneider-Electric » Ibp219-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:ibp219-1er_firmware:*
Schneider-Electric » Ibp319-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:ibp319-1er_firmware:*
Schneider-Electric » Ibp519-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:ibp519-1er_firmware:*
Schneider-Electric » Ibps110-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:ibps110-1er_firmware:*
Schneider-Electric » Imp1110-1 Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp1110-1_firmware:*
Schneider-Electric » Imp1110-1e Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp1110-1e_firmware:*
Schneider-Electric » Imp1110-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp1110-1er_firmware:*
Schneider-Electric » Imp219-1 Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp219-1_firmware:*
Schneider-Electric » Imp219-1e Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp219-1e_firmware:*
Schneider-Electric » Imp219-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp219-1er_firmware:*
Schneider-Electric » Imp319-1 Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp319-1_firmware:*
Schneider-Electric » Imp319-1e Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp319-1e_firmware:*
Schneider-Electric » Imp319-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp319-1er_firmware:*
Schneider-Electric » Imp519-1 Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp519-1_firmware:*
Schneider-Electric » Imp519-1e Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp519-1e_firmware:*
Schneider-Electric » Imp519-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:imp519-1er_firmware:*
Schneider-Electric » Imps110-1e Firmware » Version: Any

cpe:2.3:o:schneider-electric:imps110-1e_firmware:*
Schneider-Electric » Imps110-1er Firmware » Version: Any

cpe:2.3:o:schneider-electric:imps110-1er_firmware:*
Schneider-Electric » Mps110-1 Firmware » Version: Any

cpe:2.3:o:schneider-electric:mps110-1_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-7237

Products

Pricing

Contact Us