Skip to main content

Vampset

3 CVEs product

Monthly

CVE-2017-7967 MEDIUM This Month

All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Microsoft Schneider Electric Vampset
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2014-8390 MEDIUM POC PATCH This Month

Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a (1) CFG or (2) DAT file. Rated medium severity (CVSS 4.4). Public exploit code available.

Schneider Electric Buffer Overflow Vampset
NVD
CVSS 2.0
4.4
EPSS
0.2%
CVE-2014-5407 MEDIUM This Month

Multiple stack-based buffer overflows in Schneider Electric VAMPSET 2.2.136 and earlier allow local users to cause a denial of service (application halt) via a malformed (1) setting file or (2). Rated medium severity (CVSS 4.1). No vendor patch available.

Denial Of Service Schneider Electric Stack Overflow Buffer Overflow Vampset
NVD GitHub
CVSS 2.0
4.1
EPSS
0.1%
EPSS 0% CVSS 5.5
MEDIUM This Month

All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Microsoft Schneider Electric +1
NVD
EPSS 0% CVSS 4.4
MEDIUM POC PATCH This Month

Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a (1) CFG or (2) DAT file. Rated medium severity (CVSS 4.4). Public exploit code available.

Schneider Electric Buffer Overflow Vampset
NVD
EPSS 0% CVSS 4.1
MEDIUM This Month

Multiple stack-based buffer overflows in Schneider Electric VAMPSET 2.2.136 and earlier allow local users to cause a denial of service (application halt) via a malformed (1) setting file or (2). Rated medium severity (CVSS 4.1). No vendor patch available.

Denial Of Service Schneider Electric Stack Overflow +2
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy