Browse all 118 CVE security advisories affecting Schneider Electric SE. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Schneider Electric SE operates as a global specialist in energy management and industrial automation, providing critical infrastructure solutions for data centers, buildings, and manufacturing facilities. Its extensive product portfolio includes programmable logic controllers, human-machine interfaces, and power distribution systems, making it a high-value target for threat actors seeking to disrupt essential services. Historical vulnerability assessments reveal a prevalence of remote code execution flaws, often stemming from unpatched legacy components and insecure default configurations in its EcoStruxure platform. Additionally, cross-site scripting and privilege escalation vulnerabilities have frequently appeared in its web-based management interfaces, allowing unauthorized access to operational technology networks. While no catastrophic, widely publicized breaches have defined its recent history, the sheer volume of recorded CVEs underscores significant technical debt. The company’s critical role in global infrastructure necessitates rigorous, continuous security patching to mitigate risks associated with its complex, interconnected ecosystem.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-7794 | 多款Schneider Electric产品代码问题漏洞 — Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions)CWE-754 | 7.5 | - | 2020-01-06 |
| CVE-2019-6857 | 多款Schneider Electric产品代码问题漏洞 — Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions)CWE-754 | 7.5 | - | 2020-01-06 |
| CVE-2019-6856 | 多款Schneider Electric产品代码问题漏洞 — Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions)CWE-754 | 7.5 | - | 2020-01-06 |
| CVE-2019-6828 | 多款Schneider Electric产品安全漏洞 — Modicon M580CWE-248 | 7.5 | - | 2019-09-17 |
| CVE-2019-6826 | Schneider Electric SoMachine HVAC 代码问题漏洞 — SoMachine HVACCWE-426 | 7.8 | - | 2019-09-17 |
| CVE-2019-6811 | Schneider Electric Quantum 140 NOE771x1 代码问题漏洞 — Modicon Quantum 140 NOE771x1CWE-754 | 7.5 | - | 2019-09-17 |
| CVE-2019-6810 | Schneider Electric BMXNOR0200H Ethernet/Serial RTU module 安全漏洞 — BMXNOR0200H Ethernet / Serial RTU moduleCWE-284 | 8.8 | - | 2019-09-17 |
| CVE-2019-6809 | 多款Schneider Electric产品安全漏洞 — Modicon M580CWE-248 | 7.5 | - | 2019-09-17 |
| CVE-2018-7820 | Schneider Electric APC UPS Network Management Card 2 信任管理问题漏洞 — APC UPS Network Management Card 2 AOSCWE-255 | 9.8 | - | 2019-09-17 |
| CVE-2019-6829 | Schneider Electric Modicon M340和Modicon M580 安全漏洞 — Modicon M580CWE-248 | 7.5 | - | 2019-09-17 |
| CVE-2019-6833 | 多款Schneider Electric产品代码问题漏洞 — Magelis HMI PanelsCWE-754 | 7.5 | - | 2019-09-17 |
| CVE-2019-6832 | Schneider Electric Wiser for KNX和spaceLYnk 授权问题漏洞 — spaceLYnkCWE-287 | 8.3 | - | 2019-09-17 |
| CVE-2019-6831 | Schneider Electric BMXNOR0200H Ethernet/Serial RTU module 代码问题漏洞 — BMXNOR0200H Ethernet / Serial RTU moduleCWE-754 | 7.5 | - | 2019-09-17 |
| CVE-2019-6830 | Schneider Electric Modicon M580 安全漏洞 — Modicon M580CWE-248 | 7.5 | - | 2019-09-17 |
| CVE-2019-6840 | 多款Schneider Electric产品格式化字符串错误漏洞 — U.motion ServerCWE-134 | 9.8 | - | 2019-09-17 |
| CVE-2019-6835 | 多款Schneider Electric产品跨站脚本漏洞 — U.motion ServerCWE-79 | 5.4 | - | 2019-09-17 |
| CVE-2018-7839 | Schneider Electric IIoT Monitor 加密问题漏洞 — IIoT Monitor 3.1.38 | 6.2 | - | 2019-02-06 |
| CVE-2018-7813 | Schneider Electric Eurotherm by Schneider Electric GUIcon 安全漏洞 — Eurotherm by Schneider Electric GUIcon V2.0 (Gold Build 683.0) | 7.8 | - | 2019-02-06 |
| CVE-2018-7814 | Schneider Electric Eurotherm by Schneider Electric GUIcon 缓冲区错误漏洞 — Eurotherm by Schneider Electric GUIcon V2.0 (Gold Build 683.0) | 7.8 | - | 2019-02-06 |
| CVE-2018-7817 | Schneider Electric Zelio Soft 资源管理错误漏洞 — Zelio Soft 2 v5.1 and prior versionsCWE-416 | 7.8 | - | 2019-02-06 |
| CVE-2018-7815 | Schneider Electric Eurotherm by Schneider Electric GUIcon 安全漏洞 — Eurotherm by Schneider Electric GUIcon V2.0 (Gold Build 683.0) | 7.8 | - | 2019-02-06 |
| CVE-2018-7836 | Schneider Electric IIoT Monitor 安全漏洞 — IIoT Monitor 3.1.38 | 9.8 | - | 2018-12-24 |
| CVE-2018-7802 | Schneider Electric EVLink Parking SQL注入漏洞 — EVLink Parking v3.2.0-12_v1 and earlier | 8.8 | - | 2018-12-24 |
| CVE-2018-7801 | Schneider Electric EVLink Parking 代码注入漏洞 — EVLink Parking v3.2.0-12_v1 and earlier | 8.8 | - | 2018-12-24 |
| CVE-2018-7800 | Schneider Electric EVLink Parking 安全漏洞 — EVLink Parking v3.2.0-12_v1 and earlier | 9.8 | - | 2018-12-24 |
| CVE-2018-7796 | Schneider Electric PowerSuite 2 缓冲区错误漏洞 — PowerSuite 2, All released versions (VW3A8104 & Patches) | 8.3 | - | 2018-12-24 |
| CVE-2018-7793 | 多款Schneider Electric产品信任管理问题漏洞 — FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.) | 7.3 | - | 2018-12-24 |
| CVE-2018-7835 | Schneider Electric IIoT Monitor 路径遍历漏洞 — IIoT Monitor 3.1.38 | 6.5 | - | 2018-12-24 |
| CVE-2018-7837 | Schneider Electric IIoT Monitor 安全漏洞 — IIoT Monitor 3.1.38 | 6.2 | - | 2018-12-24 |
| CVE-2018-7832 | Schneider Electric Pro-Face GP-Pro EX 输入验证漏洞 — Pro-Face GP-Pro EX v4.08 and previous versions | 7.3 | - | 2018-12-24 |
This page lists every published CVE security advisory associated with Schneider Electric SE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.