cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-11139,https://securityvulnerability.io/vulnerability/CVE-2024-11139,Memory Buffer Vulnerability in Schneider Electric Products,"A vulnerability exists in various Schneider Electric systems that allows local attackers to exploit improper restrictions within memory buffers. When a malicious project file is opened, this could lead to arbitrary code execution. This issue underscores the importance of adhering to security protocols when handling unknown project files to mitigate potential risks.",Schneider Electric,Ecostruxure™ Power Build Rapsody,4.6,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-17T08:37:24.886Z,0
CVE-2021-22697,https://securityvulnerability.io/vulnerability/CVE-2021-22697,Unrestricted File Upload Vulnerability in EcoStruxure Power Build by Schneider Electric,"A vulnerability exists in EcoStruxure Power Build - Rapsody software that allows for the unrestricted upload of potentially dangerous file types. This flaw could lead to a use-after-free condition, enabling attackers to execute arbitrary code remotely when a malicious SSD file is uploaded and improperly processed, which may compromise the integrity and security of the affected system.",Schneider Electric,ecostruxure Power Build - Rapsody Software V2.1.13 And Prior.,7.8,HIGH,0.0739699974656105,false,,false,false,false,,,false,false,,2021-01-26T18:16:00.000Z,0
CVE-2021-22698,https://securityvulnerability.io/vulnerability/CVE-2021-22698,Unrestricted File Upload Vulnerability in EcoStruxure Power Build Software by Schneider Electric,"An unrestricted file upload vulnerability exists in the EcoStruxure Power Build - Rapsody software. This flaw allows malicious users to upload a specially crafted SSD file that can lead to a stack-based buffer overflow. If exploited, it may enable remote code execution due to the improper parsing of files within the software. Affected versions include V2.1.13 and earlier, highlighting the need for immediate attention to security practices to mitigate risks associated with this vulnerability.",Schneider Electric,ecostruxure Power Build - Rapsody Software V2.1.13 And Prior.,7.8,HIGH,0.10040000081062317,false,,false,false,false,,,false,false,,2021-01-26T18:16:00.000Z,0