GCVE - cpe:2.3:a:schneider_electric_se:iiot_monitor

Approved changes feed: RSS · Atom

cpe:2.3:a:schneider_electric_se:iiot_monitor_3.1.38:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Schneider Electric Se (`25d1a66d-bfb8-5d1c-9a6c-4a2405fe5386`)
Product	Iiot Monitor 3.1.38 (`9ab18998-775c-575c-8a79-fcc2d28c543a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-7839`	vulnerable	2026-06-03 14:39:07.729197	Details available A Cryptographic Issue (CWE-310) vulnerability exists in IIoT Monitor 3.1.38 which could allow information disclosure. Published: 2019-02-06T23:00:00.000Z Updated: 2024-08-05T06:37:59.616Z Open on db.gcve.eu Reference links https://www.schneider-electric.com/en/download/document/SEVD-2018-354-03/ https://ics-cert.us-cert.gov/advisories/ICSA-19-008-02	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-7837`	vulnerable	2026-06-03 14:39:07.693676	Details available An Improper Restriction of XML External Entity Reference ('XXE') vulnerability exists on numerous methods of the IIoT Monitor 3.1.38 software that could allow the software to resolve documents outside of the intended sphere of control, causing the software to embed incorrect documents into its output and expose restricted information. Published: 2018-12-24T16:00:00.000Z Updated: 2024-08-05T06:37:59.531Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/106484 https://www.schneider-electric.com/en/download/document/SEVD-2018-354-03/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-7836`	vulnerable	2026-06-03 14:39:07.691964	Details available An unrestricted Upload of File with Dangerous Type vulnerability exists on numerous methods of the IIoT Monitor 3.1.38 software that could allow upload and execution of malicious files. Published: 2018-12-24T16:00:00.000Z Updated: 2024-08-05T06:37:59.577Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/106484 https://www.schneider-electric.com/en/download/document/SEVD-2018-354-03/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-7835`	vulnerable	2026-06-03 14:39:07.690765	Details available An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in IIoT Monitor 3.1.38 which could allow access to files available to SYSTEM user. Published: 2018-12-24T16:00:00.000Z Updated: 2024-08-05T06:37:59.606Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/106484 https://www.schneider-electric.com/en/download/document/SEVD-2018-354-03/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Iiot Monitor 3.1.38

PURL mappings

Vulnerability references

Contribute