CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-7801

A Code Injection vulnerability exists in EVLink Parking, v3.2.0-12_v1 and earlier, which could enable access with maximum privileges when a remote code execution is performed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.213

EPSS Ranking 95.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

http://seclists.org/fulldisclosure/2021/Jul/32
http://www.securityfocus.com/bid/106807
https://ics-cert.us-cert.gov/advisories/ICSA-19-031-01
https://www.schneider-electric.com/en/download/document/SEVD-2018-354-01/
http://seclists.org/fulldisclosure/2021/Jul/32
http://www.securityfocus.com/bid/106807
https://ics-cert.us-cert.gov/advisories/ICSA-19-031-01
https://www.schneider-electric.com/en/download/document/SEVD-2018-354-01/

Products affected by CVE-2018-7801

Schneider-Electric » Evlink Parking » Version: N/A

cpe:2.3:h:schneider-electric:evlink_parking:-
Schneider-Electric » Evlink Parking Firmware » Version: 3.1.1-33

cpe:2.3:o:schneider-electric:evlink_parking_firmware:3.1.1-33
Schneider-Electric » Evlink Parking Firmware » Version: 3.2.0-12

cpe:2.3:o:schneider-electric:evlink_parking_firmware:3.2.0-12

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-7801

Products

Pricing

Contact Us