Vulnerabilities (CVE)

Filtered by vendor Schneider-electric Subscribe

Filtered by product Pelco Videoxpert

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-9964	1 Schneider-electric	1 Pelco Videoxpert	2018-02-13	5.8 MEDIUM	6.9 MEDIUM
A Path Traversal issue was discovered in Schneider Electric Pelco VideoXpert Enterprise all versions prior to 2.1. By sniffing communications, an unauthorized person can execute a directory traversal attack resulting in authentication bypass or session hijack.
CVE-2017-9965	1 Schneider-electric	1 Pelco Videoxpert	2018-02-13	5.0 MEDIUM	5.8 MEDIUM
An exposure of sensitive information vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. Using a directory traversal attack, an unauthorized person can view web server files.