PT-2025-36977 · Schneider Electric · Ats490 Altivar Soft Starter+8
Published
2025-09-09
·
Updated
2025-09-16
·
CVE-2025-7746
CVSS v2.0
6.4
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions:
The product name cannot be determined. (affected versions not specified)
Description:
The software contains a Cross-site Scripting (XSS) vulnerability. This issue could allow an attacker to inject unvalidated data, potentially leading to modification or reading of data in a victim’s browser.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ats490 Altivar Soft Starter
Atv340E Altivar Machine Drives
Atv6000 Medium Voltage Altivar Process Drives
Atv630/650/660/680/6A0/6B0/6L0 Altivar Process Drives
Atv930/950/955/960/980/9A0/9B0/9L0/991/992/993 Altivar Process Drives
Ilc992 Interlink Converter
Schneider Electric Vw3A3530D: Atvdpac Module
Vw3A3530D: Atvdpac Module
Vw3A3720 & Vw3A3721 Altivar Process Communication Modules