Schneider-electric Somachine Basic — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Somachine Basic, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2020-7489 — CVSS 9.8 (critical): A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability exists on…
CVE-2018-7798 — CVSS 8.2 (high): A Insufficient Verification of Data Authenticity (CWE-345) vulnerability exists in the Modicon M221, all versions, which could cause a…
CVE-2018-7783 — CVSS 7.5 (high): Schneider Electric SoMachine Basic prior to v1.6 SP1 suffers from an XML External Entity (XXE) vulnerability using the DTD parameter…
CVE-2018-7821 — CVSS 7.5 (high): An Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to…
CVE-2018-7822 — CVSS 5.5 (medium): An Incorrect Default Permissions (CWE-276) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all…
CVE-2018-7823 — CVSS 5.3 (medium): A Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to…