cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-10083,https://securityvulnerability.io/vulnerability/CVE-2024-10083,Improper Input Validation in Schneider Electric's Engineering Workstation,"An improper input validation flaw has been identified in Schneider Electric's Engineering Workstation. This vulnerability may allow an authenticated user to exploit specific driver interfaces with crafted inputs, potentially resulting in a denial of service condition. Proper measures should be taken to ensure that only validated and expected input is processed by the system, mitigating the risk of disruption to services.",Schneider Electric,"Uni-telway Driver,Uni-telway Driver Used In Ecostruxure Control Expert,Uni-telway Driver Used In Ecostruxure Process Expert,Uni-telway Driver Used In Ecostruxure Process Expert For Aveva System Platform,Uni-telway Driver Used In Opc Factory Server",6.8,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-13T05:40:13.596Z,0
CVE-2023-2161,https://securityvulnerability.io/vulnerability/CVE-2023-2161,Improper Restriction of XML External Entity Reference in Schneider Electric Software,"An improper restriction of XML external entity reference vulnerability exists in Schneider Electric Software. This vulnerability can enable a local user with malicious intent to load a specially crafted configuration file, potentially leading to unauthorized access to the file system. It's crucial for users to update their software to mitigate this risk and safeguard their data.",Schneider Electric,Opc Factory Server (ofs),5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-05-16T05:15:00.000Z,0
CVE-2014-0789,https://securityvulnerability.io/vulnerability/CVE-2014-0789,,"Multiple buffer overflows in the OPC Automation 2.0 Server Object ActiveX control in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 3.5 and earlier, TLXCDSTOFS33 3.5 and earlier, TLXCDLUOFS33 3.5 and earlier, TLXCDLTOFS33 3.5 and earlier, and TLXCDLFOFS33 3.5 and earlier allow remote attackers to cause a denial of service via long arguments to unspecified functions.",Schneider Electric,"Opc Factory Server Tlxcdlfofs,Opc Factory Server Tlxcdstofs,Opc Factory Server Tlxcdsuofs,Opc Factory Server Tlxcdltofs,Opc Factory Server Tlxcdluofs",,,0.0020200000144541264,false,,false,false,false,,,false,false,,2014-04-04T15:00:00.000Z,0
CVE-2013-0662,https://securityvulnerability.io/vulnerability/CVE-2013-0662,,Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.,Schneider Electric,"Somachine,Concept,Modbus Serial Driver,Sft2841,Somove,Opc Factory Server,Powersuite,Pl7,Modbuscommdtm Sl,Unity Pro,Twidosuite,Unityloader",,,0.647379994392395,false,,false,false,false,,,false,false,,2014-04-01T06:17:00.000Z,0
CVE-2014-0774,https://securityvulnerability.io/vulnerability/CVE-2014-0774,,"Stack-based buffer overflow in the C++ sample client in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 - 3.35, TLXCDSTOFS33 - 3.35, TLXCDLUOFS33 - 3.35, TLXCDLTOFS33 - 3.35, and TLXCDLFOFS33 - 3.35 allows local users to gain privileges via vectors involving a malformed configuration file.",Schneider Electric,"Ofs Test Client Tlxcdlfofs33,Ofs Test Client Tlxcdsuofs33,Ofs Test Client Tlxcdltofs33,Ofs Test Client Tlxcdstofs33,Ofs Test Client Tlxcdluofs33,Opc Factory Server",,,0.1850000023841858,false,,false,false,false,,,false,false,,2014-02-28T02:00:00.000Z,0
CVE-2011-3330,https://securityvulnerability.io/vulnerability/CVE-2011-3330,,"Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and possibly remote attackers, to execute arbitrary code via an unspecified system parameter.",Schneider Electric,"Opc Factory Server,Vijeo Citect,Telemecanique Driver Pack,Monitor Pro,Unity Pro,Pl7 Pro",,,0.007799999788403511,false,,false,false,false,,,false,false,,2011-11-04T21:00:00.000Z,0