cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-0327,https://securityvulnerability.io/vulnerability/CVE-2025-0327,Improper Privilege Management Vulnerability in Schneider Electric Services,"An improper privilege management vulnerability has been identified in Schneider Electric services, specifically in the services that manage audit trail data and client requests. This flaw allows an attacker with standard user privileges to modify the executable path of these Windows services. Exploiting this vulnerability requires a service restart, which can lead to significant risks involving the confidentiality, integrity, and availability of the engineering workstation involved.",Schneider Electric,"Ecostruxure Process Expert,Ecostruxure Process Expert For Aveva System Platform",8.5,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-13T06:20:26.852Z,0
CVE-2024-10083,https://securityvulnerability.io/vulnerability/CVE-2024-10083,Improper Input Validation in Schneider Electric's Engineering Workstation,"An improper input validation flaw has been identified in Schneider Electric's Engineering Workstation. This vulnerability may allow an authenticated user to exploit specific driver interfaces with crafted inputs, potentially resulting in a denial of service condition. Proper measures should be taken to ensure that only validated and expected input is processed by the system, mitigating the risk of disruption to services.",Schneider Electric,"Uni-telway Driver,Uni-telway Driver Used In Ecostruxure Control Expert,Uni-telway Driver Used In Ecostruxure Process Expert,Uni-telway Driver Used In Ecostruxure Process Expert For Aveva System Platform,Uni-telway Driver Used In Opc Factory Server",6.8,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-13T05:40:13.596Z,0