Schneider-electric Interactive Graphical Scada System Data Collector — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Interactive Graphical Scada System Data Collector, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2021-22802 — CVSS 9.8 (critical): A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution due to missing length…
CVE-2021-22803 — CVSS 9.8 (critical): A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could lead to remote code execution through a number…
CVE-2021-22805 — CVSS 9.1 (critical): A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of…
CVE-2021-22823 — CVSS 9.1 (critical): A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of…
CVE-2021-22804 — CVSS 7.5 (high): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause disclosure of arbitrary files…
CVE-2021-22824 — CVSS 7.5 (high): A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in denial of service, due to missing length…