3 matches found
Schneider Electric Easergy P5 and P3
1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: Easergy P5 and P3 --------- Begin Update A Part 1 of 4 --------- Vulnerabilities: Use of Hard-Coded Credentials, Classic Buffer Overflow, and Improper Input Validation --------- End Update A...
CVE-2022-22723
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be...
CVE-2022-22723
CVE-2022-22723 is a buffer-copy-via-input vulnerability in Schneider Electric’s Easergy P5 (all firmware versions prior to v01.401.101) that can cause crashes and arbitrary code execution when receiving specially crafted network packets. Connected docs confirm a related, separate CVE-2022-22725 a...