Skip to main content

Ecostruxure Energy Expert

4 CVEs product

Monthly

CVE-2020-7547 HIGH This Week

A CWE-284: Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Ecostruxure Energy Expert Ecostruxure Power Monitoring Expert Power Manager Powerscada Expert With Advanced Reporting And Dashboards +1
NVD
CVSS 3.1
8.8
EPSS
1.3%
CVE-2020-7546 MEDIUM This Month

A CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ecostruxure Energy Expert Ecostruxure Power Monitoring Expert Power Manager Powerscada Expert With Advanced Reporting And Dashboards +1
NVD
CVSS 3.1
5.4
EPSS
0.6%
CVE-2020-7545 HIGH This Week

A CWE-284:Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow for. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Authentication Bypass Ecostruxure Energy Expert Ecostruxure Power Monitoring Expert Power Manager +2
NVD
CVSS 3.1
7.2
EPSS
2.0%
CVE-2018-7797 MEDIUM This Month

A URL redirection vulnerability exists in Power Monitoring Expert, Energy Expert (formerly Power Manager) - EcoStruxure Power Monitoring Expert (PME) v8.2 (all editions), EcoStruxure Energy Expert. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Ecostruxure Energy Expert Ecostruxure Power Monitoring Expert Ecostruxure Power Scada Operation
NVD
CVSS 3.0
6.1
EPSS
0.8%
EPSS 1% CVSS 8.8
HIGH This Week

A CWE-284: Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Ecostruxure Energy Expert Ecostruxure Power Monitoring Expert +3
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

A CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ecostruxure Energy Expert Ecostruxure Power Monitoring Expert +3
NVD
EPSS 2% CVSS 7.2
HIGH This Week

A CWE-284:Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow for. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Authentication Bypass Ecostruxure Energy Expert +4
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

A URL redirection vulnerability exists in Power Monitoring Expert, Energy Expert (formerly Power Manager) - EcoStruxure Power Monitoring Expert (PME) v8.2 (all editions), EcoStruxure Energy Expert. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Ecostruxure Energy Expert Ecostruxure Power Monitoring Expert +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy