VDB

SEVD-2020-315-04

SEVD-2020-315-04 PUBLISHED CVSS 4.599999904632568 MEDIUM

Schneider Electric is aware of multiple vulnerabilities in its EcoStruxure Building Operation (EBO) product offerings. More information on the product line can be found at the following link: https://www.se.com/ww/en/product-range-presentation/62111-ecostruxure%E2%84%A2- building-operation/?parent-subcategory-id=1210&filter=business-2-building-automation-andcontrol#tabs-top Failure to apply the mitigations/remediations provided below may risk various types of attacks and cause various types of impact (see information below for each vulnerability).

Risk Scores

CVSS v3.1
4.599999904632568
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

Affected Products

VendorProductVersions
Schneider Electric Enterprise Central installer V2.0 - V3.1
Schneider Electric EBO Version 3.2
Schneider Electric Enterprise Server installer V1.9 - V3.1
Schneider Electric WebStation V2.0 - V3.1
Schneider Electric WebReports V1.9 - V3.1

Timeline

  • Nov 10, 2020 CVE Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›