cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-7547,https://securityvulnerability.io/vulnerability/CVE-2020-7547,Improper Access Control in EcoStruxure and SmartStruxure Power Monitoring,"An improper access control vulnerability exists in Schneider Electric's EcoStruxure and SmartStruxure Power Monitoring and SCADA Software. This flaw could allow an attacker to execute actions through the web interface with elevated privileges, potentially leading to unauthorized access and control over the system. Users are encouraged to apply the latest updates and follow security recommendations to mitigate risks associated with this vulnerability.",Schneider Electric,Ecostruxureª And Smartstruxureª Power Monitoring And Scada Software (see Security Notification For Version Information),8.8,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2020-12-01T14:44:52.000Z,0
CVE-2020-7546,https://securityvulnerability.io/vulnerability/CVE-2020-7546,Improper Input Neutralization Vulnerability in Schneider Electric Power Monitoring Software,"A vulnerability exists in Schneider Electric's EcoStruxure and SmartStruxure Power Monitoring and SCADA Software that inadequately neutralizes input during webpage generation. This can allow an attacker to perform actions on behalf of an authorized user when interacting with affected web pages, potentially leading to unauthorized access and manipulation of sensitive data.",Schneider Electric,Ecostruxureª And Smartstruxureª Power Monitoring And Scada Software (see Security Notification For Version Information),5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-01T14:44:31.000Z,0
CVE-2020-7545,https://securityvulnerability.io/vulnerability/CVE-2020-7545,Improper Access Control Vulnerability in EcoStruxure and SmartStruxure Software by Schneider Electric,"An improper access control vulnerability exists in EcoStruxure and SmartStruxure Power Monitoring and SCADA Software, which may permit an authorized user to execute arbitrary code on the server when accessing specified affected web pages. This flaw poses a significant risk by potentially allowing unauthorized actions on the system, underscoring the importance of strict access controls in safeguarding critical infrastructure.",Schneider Electric,Ecostruxureª And Smartstruxureª Power Monitoring And Scada Software (see Security Notification For Version Information),7.2,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2020-12-01T14:44:10.000Z,0