CVE-2021-22782

🗓️ 14 Jul 2021 14:26:56Reported by schneiderType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 60 Views

CVE-2021-22782 Missing Encryption of Sensitive Data vulnerability in EcoStruxure Control Expert, EcoStruxure Process Expert, and SCADAPack RemoteConnec

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2021-22782	15 Jul 202111:07	–	circl
CNNVD	Schneider Electric EcoStruxure Control Expert 安全漏洞	14 Jul 202100:00	–	cnnvd
Cvelist	CVE-2021-22782	14 Jul 202114:26	–	cvelist
EUVD	EUVD-2021-9917	3 Oct 202520:07	–	euvd
ICS	Schneider Electric Modicon Controllers and Software (Update A)	13 Jul 202100:00	–	ics
NVD	CVE-2021-22782	14 Jul 202115:15	–	nvd
Prion	Information disclosure	14 Jul 202115:15	–	prion
RedhatCVE	CVE-2021-22782	9 Jan 202611:19	–	redhatcve

NVD

Node

schneider-electric ecostruxure_control_expertRange<15.0

schneider-electric ecostruxure_control_expertMatch15.0-

schneider-electric ecostruxure_process_expert

schneider-electric remoteconnectscadapack_x70

[
  {
    "product": "EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), and SCADAPack RemoteConnect for x70, all versions",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), and SCADAPack RemoteConnect for x70, all versions"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

21 Nov 2024 05:50Current

5.3Medium risk

Vulners AI Score5.3

CVSS 22.1

CVSS 3.15.5

EPSS0.00022

CWE-311