Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-35813

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.00311EPSS
Exploits0References1
NVD
NVD
added 2023/01/30 11:15 p.m.27 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8.1CVSS7.8AI score0.00311EPSS
Exploits0References1
CVE
CVE
added 2023/01/30 12:0 a.m.45 views

CVE-2022-32747

CVE-2022-32747 affects Schneider Electric’s EcoStruxure Cybersecurity Admin Expert (CAE) prior to 2.2. The issue is a CWE-290 authentication bypass by spoofing a device on the local network, which could cause legitimate users to be locked out or enable backdoor account creation. Root cause: spoof...

8.1CVSS7.8AI score0.00311EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/30 12:0 a.m.8 views

CVE-2022-32747

A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert CAE Versions prior to 2.2...

8CVSS6.7AI score0.00311EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/01/30 12:0 a.m.8 views

CVE-2022-32748

A CWE-295: Improper Certificate Validation vulnerability exists that could cause the CAE software to give wrong data to end users when using CAE to configure devices. Additionally, credentials could leak which would enable an attacker the ability to log into the configuration tool and compromise...

7.9CVSS6.8AI score0.0014EPSS
Exploits0References1
Rows per page
Query Builder