Schneider-electric

Ecostruxure Power Build - Rapsody

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-13845

  • EPSS 0.03%
  • Veröffentlicht 15.01.2026 18:33:23
  • Zuletzt bearbeitet 27.04.2026 17:26:56

CWE-416: Use After Free vulnerability that could cause remote code execution when the end user imports the malicious project file (SSD file) into Rapsody.

5.3

CVE-2025-13844

  • EPSS 0.01%
  • Veröffentlicht 15.01.2026 18:28:37
  • Zuletzt bearbeitet 03.03.2026 16:44:40

CWE-415: Double Free vulnerability exists that could cause heap memory corruption when the end user imports a malicious project file (SSD file) shared by the attacker into Rapsody.

7.8

CVE-2021-22697

  • EPSS 0.71%
  • Veröffentlicht 26.01.2021 18:16:18
  • Zuletzt bearbeitet 21.11.2024 05:50:29

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software (V2.1.13 and prior) that could allow a use-after-free condition which could result in remote code execution when a malic...

7.8

CVE-2021-22698

  • EPSS 1.38%
  • Veröffentlicht 26.01.2021 18:16:18
  • Zuletzt bearbeitet 21.11.2024 05:50:29

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software (V2.1.13 and prior) that could allow a stack-based buffer overflow to occur which could result in remote code execution ...