cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-22697,https://securityvulnerability.io/vulnerability/CVE-2021-22697,Unrestricted File Upload Vulnerability in EcoStruxure Power Build by Schneider Electric,"A vulnerability exists in EcoStruxure Power Build - Rapsody software that allows for the unrestricted upload of potentially dangerous file types. This flaw could lead to a use-after-free condition, enabling attackers to execute arbitrary code remotely when a malicious SSD file is uploaded and improperly processed, which may compromise the integrity and security of the affected system.",Schneider Electric,ecostruxure Power Build - Rapsody Software V2.1.13 And Prior.,7.8,HIGH,0.0739699974656105,false,,false,false,false,,,false,false,,2021-01-26T18:16:00.000Z,0
CVE-2021-22698,https://securityvulnerability.io/vulnerability/CVE-2021-22698,Unrestricted File Upload Vulnerability in EcoStruxure Power Build Software by Schneider Electric,"An unrestricted file upload vulnerability exists in the EcoStruxure Power Build - Rapsody software. This flaw allows malicious users to upload a specially crafted SSD file that can lead to a stack-based buffer overflow. If exploited, it may enable remote code execution due to the improper parsing of files within the software. Affected versions include V2.1.13 and earlier, highlighting the need for immediate attention to security practices to mitigate risks associated with this vulnerability.",Schneider Electric,ecostruxure Power Build - Rapsody Software V2.1.13 And Prior.,7.8,HIGH,0.10040000081062317,false,,false,false,false,,,false,false,,2021-01-26T18:16:00.000Z,0