Schneider-electric Ecostruxure Power Commission — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Ecostruxure Power Commission, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-4062 — CVSS 7.8 (high): A CWE-285: Improper Authorization vulnerability exists that could cause unauthorized access to certain software functions when an attacker…
CVE-2022-0223 — CVSS 6.5 (medium): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow an attacker…
CVE-2022-22731 — CVSS 6.5 (medium): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in a function that could…
CVE-2022-22732 — CVSS 3.9 (low): A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause all remote domains to access the resources (data)…