cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-7500,https://securityvulnerability.io/vulnerability/CVE-2020-7500,SQL Injection Vulnerability in U.motion Servers and Touch Panels by Schneider Electric,"A vulnerability in U.motion Servers and Touch Panels allows for SQL Injection attacks, potentially enabling an attacker to execute arbitrary commands. This vulnerability arises from improper handling of special elements in SQL commands, making it crucial for users to apply the recommended security updates and patches to safeguard their systems against exploitation.",Schneider Electric,U.motion Servers And Touch Panels (affected Versions Listed In The Security Notification),9.8,CRITICAL,0.0019399999873712659,false,,false,false,false,,,false,false,,2020-06-16T19:21:54.000Z,0
CVE-2020-7499,https://securityvulnerability.io/vulnerability/CVE-2020-7499,Incorrect Authorization in U.motion Servers and Touch Panels by Schneider Electric,"An incorrect authorization vulnerability affects U.motion Servers and Touch Panels, where low-privileged users can exploit the system to make unauthorized changes. This flaw poses serious risks as it allows individuals with minimal access permissions to manipulate settings or data within the system, potentially leading to further security breaches. Proper controls and validation checks are necessary to mitigate such vulnerabilities and protect the integrity of the affected products.",Schneider Electric,U.motion Servers And Touch Panels (affected Versions Listed In The Security Notification),6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-06-16T19:16:53.000Z,0