Schneider-electric C-bus Toolkit — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric C-bus Toolkit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2023-5402 — CVSS 9.8 (critical): A CWE-269: Improper Privilege Management vulnerability exists that could cause a remote code execution when the transfer command is used…
CVE-2021-22748 — CVSS 8.8 (high): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow a remote…
CVE-2021-22717 — CVSS 8.8 (high): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and…
CVE-2021-22719 — CVSS 8.8 (high): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and…
CVE-2021-22716 — CVSS 7.8 (high): A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could allow remote code execution when an…
CVE-2021-22718 — CVSS 7.8 (high): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and…
CVE-2021-22720 — CVSS 7.2 (high): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and…
CVE-2021-22784 — CVSS 5.7 (medium): A CWE-306: Missing Authentication for Critical Function vulnerability exists in C-Bus Toolkit v1.15.8 and prior that could allow an…