Code injection

2022-04-0322:15:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.8%

JSON

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick.

CPENameOperatorVersion
tofino_xenon_security_appliance_firmwarelt03.2.03
tcsefea23f3f22_firmwarelt03.23

CPE	Name	Operator	Version
	tofino_xenon_security_appliance_firmware	lt	03.2.03
	tcsefea23f3f22_firmware	lt	03.23

References

download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05

www.belden.com/support/security-assurance