Schneider-Electric: >> Ecostruxure It Gateway Security Vulnerabilities
CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on
the network and potentially impacting connected devices.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-11-13
CWE-798: Use of hard-coded credentials vulnerability exists that could cause local privilege
escalation when logged in as a non-administrative user.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-06-12
In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software installation to execute arbitrary code.
CVSS Score
7.8
EPSS Score
0.001
Published
2020-05-14