cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-7243,https://securityvulnerability.io/vulnerability/CVE-2018-7243,,"An authorization bypass vulnerability exists In Schneider Electric's 66074 MGE Network Management Card Transverse installed in MGE UPS and MGE STS. The integrated web server (Port 80/443/TCP) of the affected devices could allow a remote attacker to get a full access to device, bypassing the authorization system.",Schneider Electric,66074 Mge Network Management Card Transverse Installed In Mge Ups And Mge Sts,9.8,CRITICAL,0.004689999856054783,false,,false,false,false,,,false,false,,2018-04-18T20:00:00.000Z,0
CVE-2018-7245,https://securityvulnerability.io/vulnerability/CVE-2018-7245,,An improper authorization vulnerability exists In Schneider Electric's 66074 MGE Network Management Card Transverse installed in MGE UPS and MGE STS. The integrated web server (Port 80/443/TCP) of the affected devices could allow a remote attacker to change UPS control and shutdown parameters or other critical settings without authorization.,Schneider Electric,66074 Mge Network Management Card Transverse Installed In Mge Ups And Mge Sts,9.1,CRITICAL,0.0023900000378489494,false,,false,false,false,,,false,false,,2018-04-18T20:00:00.000Z,0
CVE-2018-7246,https://securityvulnerability.io/vulnerability/CVE-2018-7246,,"A cleartext transmission of sensitive information vulnerability exists in Schneider Electric's 66074 MGE Network Management Card Transverse installed in MGE UPS and MGE STS. he integrated web server (Port 80/443/TCP) of the affected devices could allow remote attackers to discover an administrative account. If default on device, it is not using a SSL in settings and if multiple request of the page ""Access Control"" (IP-address device/ups/pas_cont.htm) account data will be sent in cleartext",Schneider Electric,66074 Mge Network Management Card Transverse Installed In Mge Ups And Mge Sts,9.8,CRITICAL,0.0033499998971819878,false,,false,false,false,,,false,false,,2018-04-18T20:00:00.000Z,0
CVE-2018-7244,https://securityvulnerability.io/vulnerability/CVE-2018-7244,,An information disclosure vulnerability exists In Schneider Electric's 66074 MGE Network Management Card Transverse installed in MGE UPS and MGE STS. The integrated web server (Port 80/443/TCP) of the affected devices could allow a remote attacker to obtain sensitive device information if network access was obtained.,Schneider Electric,66074 Mge Network Management Card Transverse Installed In Mge Ups And Mge Sts,5.3,MEDIUM,0.0017500000540167093,false,,false,false,false,,,false,false,,2018-04-18T20:00:00.000Z,0