Lucene search
K

15 matches found

NVD
NVD
added 2022/04/03 11:15 p.m.30 views

CVE-2021-30066

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an arbitrary firmware image can be loaded because firmware signature verification for a USB stick can be bypassed. NOTE: this issue exists because of an...

7.2CVSS0.00236EPSS
Exploits0References2
OSV
OSV
added 2022/04/03 10:15 p.m.3 views

CVE-2021-30064

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an SSH login can succeed with hardcoded default credentials if the device is in the uncommissioned state...

9.8CVSS5.8AI score0.00865EPSS
Exploits0References2
OSV
OSV
added 2022/04/03 10:15 p.m.3 views

CVE-2021-30065

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, crafted ModBus packets can bypass the ModBus enforcer. NOTE: this issue exists because of an incomplete fix of CVE-2017-11401...

7.5CVSS5.8AI score0.01397EPSS
Exploits0References2
NVD
NVD
added 2022/04/03 10:15 p.m.34 views

CVE-2021-30061

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick...

7.2CVSS0.00387EPSS
Exploits0References2
Prion
Prion
added 2022/04/03 10:15 p.m.26 views

Code injection

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, crafted ModBus packets can bypass the ModBus enforcer. NOTE: this issue exists because of an incomplete fix of CVE-2017-11401...

5CVSS8.8AI score0.01397EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2022/04/03 10:15 p.m.16 views

Hardcoded credentials

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an SSH login can succeed with hardcoded default credentials if the device is in the uncommissioned state...

6.8CVSS9.4AI score0.00865EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2022/04/03 10:15 p.m.22 views

Code injection

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick...

7.2CVSS6.8AI score0.00387EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2022/04/03 10:1 p.m.51 views

CVE-2021-30066

The CVE-2021-30066 entry applies to Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 (before 03.23) and Belden Tofino Xenon Security Appliance. A firmware-signature verification bypass for USB allows loading an arbitrary firmware image, enabling kernel/firmware upgrades with unsigned p...

7.2CVSS6.7AI score0.00273EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/04/03 9:59 p.m.54 views

CVE-2021-30065

CVE-2021-30065 affects Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 prior to 03.23 and TCSEFEA23F3F20/21, plus Belden Tofino Xenon Security Appliance. Root cause is an incomplete fix of CVE-2017-11401, enabling crafted ModBus packets to bypass the ModBus enforcer. Impact: bypass of...

7.5CVSS8.8AI score0.00846EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/03 9:56 p.m.26 views

CVE-2021-30064

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an SSH login can succeed with hardcoded default credentials if the device is in the uncommissioned state...

9.7AI score0.00865EPSS
Exploits0References2
CVE
CVE
added 2022/04/03 9:56 p.m.51 views

CVE-2021-30064

The CVE affects Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 (before 03.23) and TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance. The root cause is hardcoded default credentials allowing SSH login, applicable when the device is in the uncommissioned/not-enabled state. ...

9.8CVSS9.3AI score0.00865EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/03 9:46 p.m.37 views

CVE-2021-30061

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick...

6.9AI score0.00387EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/04/03 12:0 a.m.5 views

Schneider Electric ConneXium Tofino Firewall和Schneider Electric Belden Tofino Xenon Security Appliance 信任管理问题漏洞

Schneider Electric ConneXium Tofino Firewall and Schneider Electric Belden Tofino Xenon Security Appliance are both products of Schneider Electric, a French company. The Schneider Electric ConneXium Tofino Firewall is a firewall appliance and the Schneider Electric Belden Tofino Xenon Security...

9.8CVSS8.3AI score0.00865EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/03 12:0 a.m.4 views

Schneider Electric ConneXium Network Manager Software 数据伪造问题漏洞

Schneider Electric ConneXium Network Manager Software Schneider Electric Cnm is an industrial Ethernet network management software from Schneider Electric, France. A security vulnerability exists in the Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22/21/20 prior to version 03.23 and t...

7.2CVSS6.7AI score0.00236EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/04/03 12:0 a.m.4 views

Schneider Electric ConneXium Tofino Firewall 安全漏洞

Schneider Electric ConneXium Tofino Firewall is a firewall appliance from Schneider Electric France. A security vulnerability exists in the Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 prior to version 03.23 , TCSEFEA23F3F20/21 and Belden Tofino Xenon Security Appliance, which...

7.5CVSS7.8AI score0.00846EPSS
Exploits0References3
Rows per page
Query Builder