Lucene search
+L

4 matches found

nvd
nvd
added 2023/01/30 11:15 p.m.29 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8.1CVSS7.8AI score0.00311EPSS
Exploits0References1
cve
cve
added 2023/01/30 12:0 a.m.45 views

CVE-2022-32747

CVE-2022-32747 affects Schneider Electric’s EcoStruxure Cybersecurity Admin Expert (CAE) prior to 2.2. The issue is a CWE-290 authentication bypass by spoofing a device on the local network, which could cause legitimate users to be locked out or enable backdoor account creation. Root cause: spoof...

8.1CVSS7.8AI score0.00311EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2023/01/30 12:0 a.m.9 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8CVSS6.7AI score0.00311EPSS
Exploits0References1
cvelist
cvelist
added 2023/01/30 12:0 a.m.28 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8CVSS8.1AI score0.00311EPSS
Exploits0References1
Rows per page
Query Builder