CVE-2023-1548
First published: Tue Apr 18 2023(Updated: )
A CWE-269: Improper Privilege Management vulnerability exists that could cause a local user to perform a denial of service through the console server service that is part of EcoStruxure Control Expert. Affected Products: EcoStruxure Control Expert (V15.1 and above)
Credit: cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider-electric Ecostruxure Control Expert | >=15.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-1548.
What is the severity level of CVE-2023-1548?
The severity level of CVE-2023-1548 is medium with a severity value of 5.5.
How does CVE-2023-1548 affect EcoStruxure Control Expert?
CVE-2023-1548 affects EcoStruxure Control Expert by allowing a local user to perform a denial of service through the console server service.
Which versions of EcoStruxure Control Expert are affected by CVE-2023-1548?
Versions 15.1 and above of EcoStruxure Control Expert are affected by CVE-2023-1548.
How can I fix CVE-2023-1548?
To fix CVE-2023-1548, it is recommended to apply the necessary security patches or updates provided by Schneider Electric.
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/schneider-electric
- canonical/schneider-electric ecostruxure control expert
- version/schneider-electric ecostruxure control expert/15.1