← Back

Mtn6501 0002 Firmware

mtn6501-0002_firmware

Vendor: Schneider Electric • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-7500
1Schneider Electric
6Mtn6260 0310 Firmware
Mtn6260 0315 FirmwareMtn6260 0410 Firmware+3 more
Nov 21, 2024
Jun 16, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A CWE-89:Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in U.motion Servers and Touch Panels (affected versions listed in the security notification) which could...Show more
A CWE-89:Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in U.motion Servers and Touch Panels (affected versions listed in the security notification) which could cause arbitrary code to be executed when a malicious command is entered.Show less
CVE-2020-7499
1Schneider Electric
6Mtn6260 0310 Firmware
Mtn6260 0315 FirmwareMtn6260 0410 Firmware+3 more
Nov 21, 2024
Jun 16, 2020
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
A CWE-863: Incorrect Authorization vulnerability exists in U.motion Servers and Touch Panels (affected versions listed in the security notification) which could cause unauthorized access when a low privileged user makes...Show more
A CWE-863: Incorrect Authorization vulnerability exists in U.motion Servers and Touch Panels (affected versions listed in the security notification) which could cause unauthorized access when a low privileged user makes unauthorized changes.Show less