Skip to main content

Powersystem Center

3 CVEs product

Monthly

CVE-2023-6631 HIGH This Week

PowerSYSTEM Center versions 2020 Update 16 and prior contain a vulnerability that may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Powersystem Center
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-32659 MEDIUM This Month

SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Powersystem Center
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-29158 CRITICAL Act Now

SUBNET PowerSYSTEM Center versions 2020 U10 and prior are vulnerable to replay attacks which may result in a denial-of-service condition or a loss of data integrity. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Powersystem Center
NVD
CVSS 3.1
9.1
EPSS
0.6%
EPSS 0% CVSS 7.8
HIGH This Week

PowerSYSTEM Center versions 2020 Update 16 and prior contain a vulnerability that may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Powersystem Center
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Powersystem Center
NVD
EPSS 1% CVSS 9.1
CRITICAL Act Now

SUBNET PowerSYSTEM Center versions 2020 U10 and prior are vulnerable to replay attacks which may result in a denial-of-service condition or a loss of data integrity. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Powersystem Center
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy