CVE-2021-22703

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause disclosure of user credentials when a malicious actor intercepts HTT...

EUVD-2021-9849

Malicious code in bioql PyPI...

EUVD-2021-9837

Malicious code in bioql PyPI...

EUVD-2021-9836

Malicious code in bioql PyPI...

Schneider Electric PowerLogic ION7400 / PM8000 / ION8650 / ION8800 / ION9000 Power Meters

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: PowerLogic ION7400 / PM8000 / ION8650 / ION8800 / ION9000 Vulnerability: Cleartext Transmission of Sensitive Information 2. RISK EVALUATION Successful exploitation of this...

PT-2023-3317 · Schneider Electric · Powerlogic Ion7400 +4

Name of the Vulnerable Software and Affected Versions: Schneider Electric PowerLogic ION9000 versions affected versions not specified Schneider Electric PowerLogic ION7400 versions affected versions not specified Schneider Electric PowerLogic PM8000 versions affected versions not specified...

Design/Logic Flaw

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400, PM8000 and ION9000 All versions prior to V3.0.0, which could cause the meter to reboot or allow for remote code execution...

CVE-2021-22714

Schneider Electric PowerLogic ION7400, PM8000 and ION9000 (all versions before V3.0.0) are affected by CVE-2021-22714 due to CWE-119 memory-buffer bounds violation. The issue could cause a meter reboot or remote code execution. Remediation: update to firmware V3.0.0 or apply Schneider Electric/SE...

CVE-2021-22701

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause a user to perform an unintended action on the target device when using the HTTP web...

CVE-2021-22703

CVE-2021-22703 affects Schneider Electric PowerLogic devices: ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800. The issue is CWE-319 Cleartext transmission of sensitive information, enabling disclosure of user credentials if an attacker intercepts HTTP traffic between...

CVE-2021-22702

CVE-2021-22702 affects Schneider Electric PowerLogic devices (ION7400/7650/7700-73xx/83xx-84xx-85xx/8600, ION8650, ION8800, ION9000 and PM800). Root cause: cleartext transmission of sensitive information via Telnet, exposing credentials if an attacker eavesdrops network traffic. Documented impact...

PT-2021-15176

Name of the Vulnerable Software and Affected Versions PowerLogic ION7400 affected versions not specified PowerLogic ION7650 affected versions not specified PowerLogic ION83xx/84xx/85xx/8600 affected versions not specified PowerLogic ION8650 affected versions not specified PowerLogic ION8800...

Schneider PowerLogic Product Information Disclosure Vulnerability

Schneider PowerLogic is an industrial control device from Schneider China. Provides increased power factor to improve power quality and troubleshoot power failures to protect networks, devices and operators. An information disclosure vulnerability exists in multiple Schneider PowerLogic products...

PT-2021-3898

Name of the Vulnerable Software and Affected Versions PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 affected versions not specified Description A Cleartext transmission of sensitive information issue exists, which could cause disclosure of...