2 matches found
Schneider Electric Wiser Smart Improper Authentication (CVE-2022-30238)
A CWE-287: Improper Authentication vulnerability exists that could allow an attacker to take over the admin account when an attacker hijacks a session. Affected Products: Wiser Smart, EER21000 & EER21001 V4.5 and prior This plugin only works with Tenable.ot. Please visit...
CVE-2022-30238
Schneider Electric Wiser Smart (EER21000/EER21001, v4.5 and prior) is affected by CVE-2022-30238, a CWE-287 Improper Authentication vulnerability. The issue allows an attacker to hijack a user session and take over an admin account. Public documentation across sources confirms the affected produc...