目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1110 CNY

100%
コーヒーを一杯おごる

Schneider ELectric 厂商漏洞列表 / CVE 中文分析 291

Schneider ELectric 厂商相关 291 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

施耐德电气专注于能源管理与自动化领域,提供工业控制及楼宇控制系统。其软件产品历史漏洞多涉及远程代码执行、身份验证绕过及跨站脚本,常因配置不当或组件缺陷引发。近期安全事件凸显了关键基础设施面临的供应链风险,促使厂商加强固件签名验证与补丁分发机制。鉴于其广泛部署于电网及工厂,任何漏洞均可能影响物理安全,建议用户及时更新并实施网络隔离策略以缓解潜在威胁。

上位製品 Schneider ELectric: StruxureWare Data Center Expert IGSS Data Server (IGSSdataServer.exe) PowerChute™ Serial Shutdown EcoStruxure Control Expert Modicon M340 CPU (part numbers BMXP34*) IGSS Data Server(IGSSdataServer.exe) Modicon Controllers M241/M251 OPC UA Modicon Communication Module EcoStruxure™ IT Data Center Expert EcoStruxure Operator Terminal Expert EcoStruxure™ Power Monitoring Expert (PME) Sage 1410 Data Center Expert Wiser Smart Wonderware Information Server Portal ClearSCADA EVLink WallBox APC Easy UPS Online Monitoring Software StruxureWare Data Center Expert ASCO 5310 Single-Channel Remote Annunciator EcoStruxure Power Commission Easergy P5 Easergy Studio Trio Q Licensed Data Radio Saitel DR RTU Conext™ ComBox Easergy T200 (Modbus) Models: T200I, T200E, T200P, T200S, T200H Modicon Controllers M241 / M251 EcoStruxure Power Monitoring Expert (PME) C-Bus Toolkit
CVE IDタイトルCVSS深刻度公開日
CVE-2026-6332 Clear Text Storage of Sensitive Information on EcoStruxure™ Machine Expert HVAC — Ecostruxure™ Machine Expert HVACCWE-312--2026-05-14
CVE-2026-6866 Initialization of a Resource with an Insecure Default vulnerability on EcoStruxure™ Panel Server — EcoStruxure™ Panel ServerCWE-1188--2026-05-12
CVE-2026-6865 Improper Limitation of a Pathname to a Restricted Directory Vulnerability on Multiple Products — EasyLogic T150 (formerly Saitel DR) Remote Terminal Unit & ControllerCWE-22--2026-05-12
CVE-2026-4827 Insufficient Entropy vulnerability on Multiple Products — Easergy MiCOM C264CWE-331--2026-05-12
CVE-2026-2401 Schneider Electric PowerChute Serial Shutdown 日志信息泄露漏洞 — PowerChute™ Serial ShutdownCWE-532 6.5 -2026-04-14
CVE-2026-2400 Schneider Electric PowerChute Serial Shutdown 注入漏洞 — PowerChute™ Serial ShutdownCWE-93 4.5 -2026-04-14
CVE-2026-2403 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-1284 2.7 -2026-04-14
CVE-2026-2405 Schneider Electric PowerChute Serial Shutdown 资源管理错误漏洞 — PowerChute™ Serial ShutdownCWE-400 6.5 -2026-04-14
CVE-2026-2402 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-307 9.8 -2026-04-14
CVE-2026-2404 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-116 7.5 -2026-04-14
CVE-2026-2399 Schneider Electric PowerChute Serial Shutdown 路径遍历漏洞 — PowerChute™ Serial ShutdownCWE-22 6.5 -2026-04-14
CVE-2026-4832 Schneider Electric多款产品 信任管理问题漏洞 — Easergy MiCOM P14xCWE-798 7.5 -2026-04-14
CVE-2026-2273 Schneider Electric EcoStruxure Automation Expert 代码注入漏洞 — EcoStruxure™ Automation ExpertCWE-94 7.8AIHighAI2026-03-10
CVE-2026-1286 Schneider Electric EcoStruxure Foxboro DCS 代码问题漏洞 — EcoStruxure™ Foxboro DCSCWE-502 7.8AIHighAI2026-03-10
CVE-2025-13902 Schneider Electric多款产品 跨站脚本漏洞 — Modicon Controllers M241/M251CWE-79 5.4AIMediumAI2026-03-10
CVE-2025-13901 Schneider Electric多款产品 安全漏洞 — Modicon M241/M251CWE-404 5.3AIMediumAI2026-03-10
CVE-2025-11739 Schneider Electric EcoStruxure Power Monitoring Expert和Schneider Electric EcoStruxure Power Operation(Schneider Electric EPO) 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-502 7.8AIHighAI2026-03-10
CVE-2025-13957 Schneider Electric EcoStruxure IT Data Center Expert 信任管理问题漏洞 — EcoStruxure™ IT Data Center Expert (Formerly known as StruxureWare Data Center Expert)CWE-798 9.8AICriticalAI2026-03-10
CVE-2026-1226 Schneider Electric EcoStruxure Building Operation Workstation 代码注入漏洞 — EcoStruxure Building Operation WorkstationCWE-94 7.8AIHighAI2026-02-11
CVE-2026-1227 Schneider Electric EcoStruxure Building Operation Workstation 代码问题漏洞 — EcoStruxure Building Operation WorkstationCWE-611 7.8AIHighAI2026-02-11
CVE-2025-13905 Schneider Electric EcoStruxure Process Expert 安全漏洞 — EcoStruxure™ Process ExpertCWE-276 7.8AIHighAI2026-01-29
CVE-2025-13845 Schneider Electric EcoStruxure Power Build Rapsody 资源管理错误漏洞 — EcoStruxure Power Build RapsodyCWE-416 7.8AIHighAI2026-01-15
CVE-2025-13844 Schneider Electric EcoStruxure Power Build Rapsody 资源管理错误漏洞 — EcoStruxure Power Build RapsodyCWE-415 7.8AIHighAI2026-01-15
CVE-2025-11567 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-276 8.4 -2025-11-12
CVE-2025-11566 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-307 7.8 -2025-11-12
CVE-2025-11565 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-22 6.8 -2025-11-12
CVE-2025-9997 Schneider Electric Saitel DR RTU 操作系统命令注入漏洞 — Saitel DR RTUCWE-78 8.0AIHighAI2025-09-09
CVE-2025-9996 Schneider Electric Saitel DR RTU 操作系统命令注入漏洞 — Saitel DR RTUCWE-78 8.8AIHighAI2025-09-09
CVE-2025-7746 Schneider Electric ATV Series 跨站脚本漏洞 — ATV630/650/660/680/6A0/6B0/6L0 Altivar Process DrivesCWE-79 6.1AIMediumAI2025-09-09
CVE-2025-54927 Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 路径遍历漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-22 4.9 Medium2025-08-20

本页汇总了 Schneider ELectric 厂商截至目前公开的全部 291 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。