GCVE - cpe:2.3:a:schneider_electric_se:pelco_videoxpert

Approved changes feed: RSS · Atom

cpe:2.3:a:schneider_electric_se:pelco_videoxpert_enterprise:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Schneider Electric Se (`25d1a66d-bfb8-5d1c-9a6c-4a2405fe5386`)
Product	Pelco Videoxpert Enterprise (`05641a62-fec3-57cc-9aea-30171b57825f`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-9966`	vulnerable	2026-06-03 14:37:47.658249	Details available A privilege escalation vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. By replacing certain files, an unauthorized user can obtain system privileges and the inserted code would execute at an elevated privilege level. Published: 2018-01-02T03:00:00.000Z Updated: 2024-09-16T22:55:48.511Z Open on db.gcve.eu Reference links https://ics-cert.us-cert.gov/advisories/ICSA-17-355-02 https://www.schneider-electric.com/en/download/document/SEVD-2017-339-01/ http://www.securityfocus.com/bid/102338	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9965`	vulnerable	2026-06-03 14:37:47.657902	Details available An exposure of sensitive information vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. Using a directory traversal attack, an unauthorized person can view web server files. Published: 2018-01-02T03:00:00.000Z Updated: 2024-09-17T03:27:58.239Z Open on db.gcve.eu Reference links https://ics-cert.us-cert.gov/advisories/ICSA-17-355-02 https://www.schneider-electric.com/en/download/document/SEVD-2017-339-01/ http://www.securityfocus.com/bid/102338	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9964`	vulnerable	2026-06-03 14:37:47.656088	Details available A Path Traversal issue was discovered in Schneider Electric Pelco VideoXpert Enterprise all versions prior to 2.1. By sniffing communications, an unauthorized person can execute a directory traversal attack resulting in authentication bypass or session hijack. Published: 2018-01-02T03:00:00.000Z Updated: 2024-09-16T20:36:19.074Z Open on db.gcve.eu Reference links https://ics-cert.us-cert.gov/advisories/ICSA-17-355-02 https://www.schneider-electric.com/en/download/document/SEVD-2017-339-01/ http://www.securityfocus.com/bid/102338	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Pelco Videoxpert Enterprise

PURL mappings

Vulnerability references

Contribute