← Back

Interactive Graphical Scada System Data Server

interactive_graphical_scada_system_data_server

Vendor: Schneider Electric • 8 CVEs

CVEs (8)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-24317
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A CWE-862: Missing Authorization vulnerability exists that could cause information exposure when an attacker sends a specific message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and p...Show more
A CWE-862: Missing Authorization vulnerability exists that could cause information exposure when an attacker sends a specific message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less
CVE-2022-24316
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A CWE-665: Improper Initialization vulnerability exists that could cause information exposure when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0....Show more
A CWE-665: Improper Initialization vulnerability exists that could cause information exposure when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less
CVE-2022-24315
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A CWE-125: Out-of-bounds Read vulnerability exists that could cause denial of service when an attacker repeatedly sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0...Show more
A CWE-125: Out-of-bounds Read vulnerability exists that could cause denial of service when an attacker repeatedly sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less
CVE-2022-24314
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A CWE-125: Out-of-bounds Read vulnerability exists that could cause memory leaks potentially resulting in denial of service when an attacker repeatedly sends a specially crafted message. Affected Product: Interactive Gra...Show more
A CWE-125: Out-of-bounds Read vulnerability exists that could cause memory leaks potentially resulting in denial of service when an attacker repeatedly sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less
CVE-2022-24313
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow potentially leading to remote code execution when an attacker sends a specially crafted message. A...Show more
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less
CVE-2022-24312
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by adding at end of file or create a new file in the context of the Data Server...Show more
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by adding at end of file or create a new file in the context of the Data Server potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less
CVE-2022-24311
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by inserting at beginning of file or create a new file in the context of the Da...Show more
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by inserting at beginning of file or create a new file in the context of the Data Server potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less
CVE-2022-24310
1Schneider Electric
1Interactive Graphical Scada System Data Server
Nov 21, 2024
Feb 9, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer overflow, leading to denial of service and potentially remote code execution when an attacker sends multiple specially cra...Show more
A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer overflow, leading to denial of service and potentially remote code execution when an attacker sends multiple specially crafted messages. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)Show less