Schneider-electric Vijeo_designer
6 CVEs affecting Schneider-electric Vijeo_designer. Latest disclosed: 2024-09-11. Critical: 1, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-22704 | Critical | 9.1 | 2021-09-02 | A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists in Harmony/HMI Products Configured by Vijeo Designer (all versions p… |
CVE-2020-7501 | High | 8.8 | 2020-06-16 | A CWE-798: Use of Hard-coded Credentials vulnerability exists in Vijeo Designer Basic (V1.1 HotFix 16 and prior) and Vijeo Designer (V6.2 SP9 and prior) which… |
CVE-2024-8306 | High | 7.8 | 2024-09-11 | CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access, loss of confidentiality, integrity and availability of the wo… |
CVE-2021-22817 | High | 7.8 | 2022-02-09 | A CWE-276: Incorrect Default Permissions vulnerability exists that could cause unauthorized access to the base installation directory leading to local privileg… |
CVE-2021-22705 | High | 7.8 | 2021-05-26 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause denial of service or unauthorized access to syste… |
CVE-2020-7490 | High | 7.8 | 2020-04-22 | A CWE-426: Untrusted Search Path vulnerability exists in Vijeo Designer Basic (V1.1 HotFix 15 and prior) and Vijeo Designer (V6.9 SP9 and prior), which could c… |