CVE-2023-27975 | Schneider Electric EcoStruxure Control Expert Project File insufficiently protected credentials (SEVD-2024-044-01)

Inserito da Angelo Barbosa | Feb 14, 2024 | CVE

A vulnerability classified as problematic has been found in Schneider Electric EcoStruxure Control Expert and EcoStruxure Process Expert. Affected is an unknown function of the component Project File Handler. The manipulation leads to insufficiently protected credentials.

This vulnerability is traded as CVE-2023-27975. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-27975 | Schneider Electric EcoStruxure Control Expert Project File insufficiently protected credentials (SEVD-2024-044-01)

Post correlati

CVE-2024-32391 | MacCMS 10 v.2024.1000.3000 cross site scripting

CVE-2023-34348 | AVEVA PI Server 2023/up to 2018 SP3 P05 unknown vulnerability (icsa-24-018-01)

CVE-2024-4417 | Falang Multilanguage Plugin up to 1.3.49 on WordPress cross site scripting

CVE-2024-43990 | StylemixThemes Masterstudy LMS Starter Plugin up to 1.1.8 on WordPress log file