Vulnerabilities (CVE)

Filtered by vendor Schneider-electric Subscribe
Filtered by product Ecostruxure Building Operation
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-28210 1 Schneider-electric 1 Ecostruxure Building Operation 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability exists in EcoStruxure Building Operation WebStation V2.0 - V3.1 that could cause an attacker to inject HTML and JavaScript code into the user's browser.