VYPR

EcoStruxure Power Commission

by EcoStruxure

CVEs (3)

  • CVE-2022-4062HigFeb 1, 2023
    risk 0.51cvss 7.8epss 0.00

    A CWE-285: Improper Authorization vulnerability exists that could cause unauthorized access to certain software functions when an attacker gets access to localhost interface of the EcoStruxure Power Commission application. Affected Products: EcoStruxure Power Commission…

  • CVE-2022-22731MedJan 30, 2023
    risk 0.42cvss 6.5epss 0.01

    A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in a function that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause path traversal…

  • CVE-2022-0223MedJan 30, 2023
    risk 0.42cvss 6.5epss 0.01

    A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause unauthenticated code execution.…