TROYANOSYVIRUS
Voltar para CVEs

CVE-2022-46680

HIGH
8.8

Descricao

A CWE-319: Cleartext transmission of sensitive information vulnerability exists that could cause disclosure of sensitive information, denial of service, or modification of data if an attacker is able to intercept network traffic.

Detalhes CVE

Pontuacao CVSS v3.18.8
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioREQUIRED
Publicado5/22/2023
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0

Produtos afetados

schneider-electric:powerlogic_ion7400schneider-electric:powerlogic_ion7400_firmwareschneider-electric:powerlogic_ion8650schneider-electric:powerlogic_ion8650_firmwareschneider-electric:powerlogic_ion8800schneider-electric:powerlogic_ion8800_firmwareschneider-electric:powerlogic_ion9000schneider-electric:powerlogic_ion9000_firmwareschneider-electric:powerlogic_pm8000schneider-electric:powerlogic_pm8000_firmware

Fraquezas (CWE)

CWE-319

Referencias

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-129-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-129-03.pdf(cybersecurity@se.com)
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-129-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-129-03.pdf(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.