cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-9002,https://securityvulnerability.io/vulnerability/CVE-2024-9002,Unauthorized Access Risk Due to Privilege Escalation Tampering,"A vulnerability characterized by improper privilege management has been identified in Schneider Electric's workstation software. This flaw may allow non-admin authenticated users to escalate privileges through binary tampering, potentially leading to unauthorized access and compromising the confidentiality, integrity, and availability of sensitive data. Remediation is critical to mitigate risks associated with this vulnerability in the affected versions.",Schneider Electric,Easergy Studio,7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-10-11T13:43:25.391Z,0
CVE-2023-7032,https://securityvulnerability.io/vulnerability/CVE-2023-7032,Deserialization of Untrusted Data Vulnerability in Schneider Electric Products,"A vulnerability exists in Schneider Electric products that allows an authenticated attacker with user-level privileges to exploit a deserialization flaw. This issue arises from the processing of untrusted data, specifically through harmful serialized objects. If successfully executed, this vulnerability can enable an attacker to escalate their privileges and potentially gain unauthorized access to sensitive areas of the system. Security measures should be implemented to validate and sanitize incoming serialized data to safeguard against such attacks.",Schneider Electric,Easergy Studio,7.8,HIGH,0.0004600000102072954,false,false,false,false,,false,false,2024-01-09T19:30:19.835Z,0