Browse all 118 CVE security advisories affecting Schneider Electric SE. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Schneider Electric SE operates as a global specialist in energy management and industrial automation, providing critical infrastructure solutions for data centers, buildings, and manufacturing facilities. Its extensive product portfolio includes programmable logic controllers, human-machine interfaces, and power distribution systems, making it a high-value target for threat actors seeking to disrupt essential services. Historical vulnerability assessments reveal a prevalence of remote code execution flaws, often stemming from unpatched legacy components and insecure default configurations in its EcoStruxure platform. Additionally, cross-site scripting and privilege escalation vulnerabilities have frequently appeared in its web-based management interfaces, allowing unauthorized access to operational technology networks. While no catastrophic, widely publicized breaches have defined its recent history, the sheer volume of recorded CVEs underscores significant technical debt. The company’s critical role in global infrastructure necessitates rigorous, continuous security patching to mitigate risks associated with its complex, interconnected ecosystem.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-7797 | 多款Schneider Electric产品安全漏洞 — Power Monitoring Expert, Energy Expert (formerly Power Manager) - EcoStruxureª Power Monitoring Expert (PME) v8.2 (all editions), EcoStruxureª Energy Expert 1.3 (formerly Power Manager), EcoStruxureª Power SCADA Operation (PSO) 8.2 Advanced Reports and Dashboards Module, EcoStruxureª Power Monitoring Expert (PME) v9.0, EcoStruxureª Energy Expert v2.0, and EcoStruxureªPower SCADA Operation (PSO) 9.0 Advanced Reports and Dashboards Module | 6.1 | - | 2018-12-17 |
| CVE-2018-7804 | 多款Schneider Electric产品安全漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 6.1 | - | 2018-12-17 |
| CVE-2018-7812 | 多款Schneider Electric产品安全漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 7.5 | - | 2018-12-17 |
| CVE-2018-7833 | 多款Schneider Electric产品安全漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 7.5 | - | 2018-12-17 |
| CVE-2018-7806 | Schneider Electric StruxureWare Data Center Operation 安全漏洞 — Data Center Operation all versions | 8.1 | - | 2018-11-30 |
| CVE-2018-7807 | Schneider Electric StruxureWare Data Center Expert 安全漏洞 — Data Center Expert versions 7.5.0 and earlier | 8.1 | - | 2018-11-30 |
| CVE-2018-7809 | 多款Schneider Electric产品安全漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 9.8 | - | 2018-11-30 |
| CVE-2018-7810 | 多款Schneider Electric产品跨站脚本漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 6.1 | - | 2018-11-30 |
| CVE-2018-7811 | 多款Schneider Electric产品安全漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 9.8 | - | 2018-11-30 |
| CVE-2018-7830 | 多款Schneider Electric产品安全漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 7.5 | - | 2018-11-30 |
| CVE-2018-7831 | 多款Schneider Electric产品跨站脚本漏洞 — Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 | 8.8 | - | 2018-11-30 |
| CVE-2018-7798 | Schneider Electric Modicon M221 安全漏洞 — Modicon M221, All Versions | 7.5 | - | 2018-11-02 |
| CVE-2018-7799 | Schneider Electric Software Update 安全漏洞 — Schneider Electric Software Update (SESU), all versions prior to V2.2.0 | 7.8 | - | 2018-11-02 |
| CVE-2018-7790 | Schneider Electric Modicon M221 安全漏洞 — Modicon M221, all references, all versions prior to firmware V1.6.2.0 | 9.1 | - | 2018-08-29 |
| CVE-2018-7791 | Schneider Electric Modicon M221 授权问题漏洞 — Modicon M221, all references, all versions prior to firmware V1.6.2.0 | 9.1 | - | 2018-08-29 |
| CVE-2018-7792 | Schneider Electric Modicon M221 权限许可和访问控制问题漏洞 — Modicon M221, all references, all versions prior to firmware V1.6.2.0 | 7.5 | - | 2018-08-29 |
| CVE-2018-7789 | Schneider Electric Modicon M221 代码问题漏洞 — Modicon M221, all references, all versions prior to firmware V1.6.2.0 | 7.5 | - | 2018-08-29 |
| CVE-2018-7795 | Schneider Electric PowerLogic PM5560 跨站脚本漏洞 — PowerLogic - PM5560 prior to FW version 2.5.4 | 6.1 | - | 2018-08-29 |
| CVE-2018-7763 | Schneider Electric U.motion Builder软件路径遍历漏洞 — U.Motion | 4.3 | - | 2018-07-03 |
| CVE-2018-7764 | Schneider Electric U.motion Builder软件路径遍历漏洞 — U.Motion | 4.3 | - | 2018-07-03 |
| CVE-2018-7765 | Schneider Electric U.motion Builder软件SQL注入漏洞 — U.Motion | 8.8 | - | 2018-07-03 |
| CVE-2018-7766 | Schneider Electric U.motion Builder软件SQL注入漏洞 — U.Motion | 8.8 | - | 2018-07-03 |
| CVE-2018-7767 | Schneider Electric U.motion Builder软件SQL注入漏洞 — U.Motion | 8.8 | - | 2018-07-03 |
| CVE-2018-7768 | Schneider Electric U.motion Builder软件SQL注入漏洞 — U.Motion | 8.8 | - | 2018-07-03 |
| CVE-2018-7769 | Schneider Electric U.motion Builder软件安全漏洞 — U.Motion | 8.8 | - | 2018-07-03 |
| CVE-2018-7770 | Schneider Electric U.motion Builder软件安全漏洞 — U.Motion | 7.1 | - | 2018-07-03 |
| CVE-2018-7771 | Schneider Electric U.motion Builder软件路径遍历漏洞 — U.Motion | 8.0 | - | 2018-07-03 |
| CVE-2018-7772 | Schneider Electric U.motion Builder软件SQL注入漏洞 — U.Motion | 8.1 | - | 2018-07-03 |
| CVE-2018-7773 | Schneider Electric U.motion Builder软件SQL注入漏洞 — U.Motion | 8.8 | - | 2018-07-03 |
| CVE-2018-7774 | Schneider Electric U.motion Builder软件SQL注入漏洞 — U.Motion | 8.8 | - | 2018-07-03 |
This page lists every published CVE security advisory associated with Schneider Electric SE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.