Lucene search
HistoryJul 13, 2022 - 9:15 p.m.
CVE-2022-34758
4.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
22.7%
A CWE-20: Improper Input Validation vulnerability exists that could cause the device watchdog function to be disabled if the attacker had access to privileged user credentials. Affected Products: Easergy P5 (V01.401.102 and prior)
Affected configurations
Node
schneider-electriceasergy_p5_firmwareRange≤01.401.102
schneider-electriceasergy_p5Match-
Related
cve
cve
CVE-2022-34758
2022-07-13 21:15:08
prion
prion
Input validation
2022-07-13 21:15:00
cvelist
cvelist
CVE-2022-34758
2022-07-12 00:00:00
ics
ics
Schneider Electric Easergy P5 and P3 (Update A)
2022-07-12 12:00:00
4.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
22.7%
Related for NVD:CVE-2022-34758