CVE-2018-7793
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-7793
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A Credential Management vulnerability exists in FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.) which could cause unauthorized disclosure, modification, or disruption in service when the password is modified without permission.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Schneider Electric产品信任管理问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
多款Schneider Electric产品中存在信任管理问题漏洞。攻击者可利用该漏洞未授权泄露信息、进行修改操作或中断服务。以下产品及版本受到影响:Schneider Electric Foxboro DCS ccs_9.4之前版本;Foxboro Evo ccs_9.4之前版本;FoxView 10.5版本;IA Series ccs_9.4之前版本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Schneider Electric SE | FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.) | FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.) | - |
II. Public POCs for CVE-2018-7793
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-7793
请登录查看更多情报信息。
- https://www.schneider-electric.com/en/download/document/SEVD-2018-353-03/x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2018-7793
Same Patch Batch · Schneider Electric SE · 2018-12-24 · 9 CVEs total
| CVE-2018-7796 | Schneider Electric PowerSuite 2 缓冲区错误漏洞 | |
| CVE-2018-7800 | Schneider Electric EVLink Parking 安全漏洞 | |
| CVE-2018-7801 | Schneider Electric EVLink Parking 代码注入漏洞 | |
| CVE-2018-7802 | Schneider Electric EVLink Parking SQL注入漏洞 | |
| CVE-2018-7832 | Schneider Electric Pro-Face GP-Pro EX 输入验证漏洞 | |
| CVE-2018-7835 | Schneider Electric IIoT Monitor 路径遍历漏洞 | |
| CVE-2018-7836 | Schneider Electric IIoT Monitor 安全漏洞 | |
| CVE-2018-7837 | Schneider Electric IIoT Monitor 安全漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2018-7793
No comments yet