A CWE-269: Improper Privilege Management vulnerability exists that could cause a local user to
perform a denial of service through the console server service that is part of EcoStruxure Control Expert. Affected Products: EcoStruxure Control Expert (V15.1 and above)
References
Configurations
History
12 May 2023, 05:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
26 Apr 2023, 20:41
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:schneider-electric:ecostruxure_control_expert:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
First Time |
Schneider-electric ecostruxure Control Expert
Schneider-electric |
|
References | (MISC) https://https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-03.pdf - Vendor Advisory |
18 Apr 2023, 17:36
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-18 17:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-1548
Mitre link : CVE-2023-1548
CVE.ORG link : CVE-2023-1548
JSON object : View
Products Affected
schneider-electric
- ecostruxure_control_expert
CWE
CWE-269
Improper Privilege Management