Lucene search
K

4 matches found

NVD
NVD
added 2023/01/30 11:15 p.m.28 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8.1CVSS7.8AI score0.00311EPSS
Exploits0References1
CVE
CVE
added 2023/01/30 12:0 a.m.45 views

CVE-2022-32747

CVE-2022-32747 affects Schneider Electric’s EcoStruxure Cybersecurity Admin Expert (CAE) prior to 2.2. The issue is a CWE-290 authentication bypass by spoofing a device on the local network, which could cause legitimate users to be locked out or enable backdoor account creation. Root cause: spoof...

8.1CVSS7.8AI score0.00311EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/30 12:0 a.m.26 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8CVSS8.1AI score0.00311EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/01/30 12:0 a.m.8 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8CVSS6.7AI score0.00311EPSS
Exploits0References1
Rows per page
Query Builder