cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-2161,https://securityvulnerability.io/vulnerability/CVE-2023-2161,Improper Restriction of XML External Entity Reference in Schneider Electric Software,"An improper restriction of XML external entity reference vulnerability exists in Schneider Electric Software. This vulnerability can enable a local user with malicious intent to load a specially crafted configuration file, potentially leading to unauthorized access to the file system. It's crucial for users to update their software to mitigate this risk and safeguard their data.",Schneider Electric,Opc Factory Server (ofs),5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-05-16T05:15:00.000Z,0
CVE-2014-0774,https://securityvulnerability.io/vulnerability/CVE-2014-0774,,"Stack-based buffer overflow in the C++ sample client in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 - 3.35, TLXCDSTOFS33 - 3.35, TLXCDLUOFS33 - 3.35, TLXCDLTOFS33 - 3.35, and TLXCDLFOFS33 - 3.35 allows local users to gain privileges via vectors involving a malformed configuration file.",Schneider Electric,"Ofs Test Client Tlxcdlfofs33,Ofs Test Client Tlxcdsuofs33,Ofs Test Client Tlxcdltofs33,Ofs Test Client Tlxcdstofs33,Ofs Test Client Tlxcdluofs33,Opc Factory Server",,,0.1850000023841858,false,,false,false,false,,,false,false,,2014-02-28T02:00:00.000Z,0