← Back

Pelco Videoxpert

pelco_videoxpert

Vendor: Schneider Electric • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2017-9966
1Schneider Electric
1Pelco Videoxpert
Nov 21, 2024
Jan 2, 2018
N/A· v4
7.1 HIGH· v3
7.1 HIGH· v2
A privilege escalation vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. By replacing certain files, an unauthorized user can obtain system privileges and the inserted code...Show more
A privilege escalation vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. By replacing certain files, an unauthorized user can obtain system privileges and the inserted code would execute at an elevated privilege level.Show less
CVE-2017-9965
1Schneider Electric
1Pelco Videoxpert
Nov 21, 2024
Jan 2, 2018
N/A· v4
5.8 MEDIUM· v3
5.0 MEDIUM· v2
An exposure of sensitive information vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. Using a directory traversal attack, an unauthorized person can view web server files.
CVE-2017-9964
1Schneider Electric
1Pelco Videoxpert
Nov 21, 2024
Jan 2, 2018
N/A· v4
6.9 MEDIUM· v3
5.8 MEDIUM· v2
A Path Traversal issue was discovered in Schneider Electric Pelco VideoXpert Enterprise all versions prior to 2.1. By sniffing communications, an unauthorized person can execute a directory traversal attack resulting in...Show more
A Path Traversal issue was discovered in Schneider Electric Pelco VideoXpert Enterprise all versions prior to 2.1. By sniffing communications, an unauthorized person can execute a directory traversal attack resulting in authentication bypass or session hijack.Show less