CVE-2021-22713

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600 see security notifcation for affected versions, which could cause the meter to reboot...

CVE-2021-22713

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600 see security notifcation for affected versions, which could cause the meter to reboot...

CVE-2021-22713

CVE-2021-22713 affects Schneider Electric PowerLogic meters: PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600. The root cause is a CWE-119 improper restriction of operations within the bounds of a memory buffer, which can cause the meter to reboot. The vulnerability ...

Schneider Electric PowerLogic 缓冲区错误漏洞

Schneider Electric PowerLogic is an industrial control device from Schneider Electric, France. It provides increased power factor to improve power quality and troubleshoot power failures to protect networks, devices, and operators. A security vulnerability exists in PowerLogic, which stems from a...

CVE-2021-22702

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause disclosure of user credentials when a malicious actor...

CVE-2021-22703

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause disclosure of user credentials when a malicious actor intercepts HTT...

CVE-2021-22701

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause a user to perform an unintended action on the target device when using the HTTP web...

CVE-2021-22701

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause a user to perform an unintended action on the target device when using the HTTP web...

Design/Logic Flaw

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause disclosure of user credentials when a malicious actor intercepts HTT...

Cross site request forgery (csrf)

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause a user to perform an unintended action on the target device when using the HTTP web...

CVE-2021-22701

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause a user to perform an unintended action on the target device when using the HTTP web...

CVE-2021-22701

CVE-2021-22701 affects Schneider Electric PowerLogic devices: ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800. The vulnerability is a Cross-Site Request Forgery (CSRF) in the HTTP web interface, enabling an attacker to induce unintended actions on the target device. ...

CVE-2021-22703

CVE-2021-22703 affects Schneider Electric PowerLogic devices: ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800. The issue is CWE-319 Cleartext transmission of sensitive information, enabling disclosure of user credentials if an attacker intercepts HTTP traffic between...

CVE-2021-22702

CVE-2021-22702 affects Schneider Electric PowerLogic devices (ION7400/7650/7700-73xx/83xx-84xx-85xx/8600, ION8650, ION8800, ION9000 and PM800). Root cause: cleartext transmission of sensitive information via Telnet, exposing credentials if an attacker eavesdrops network traffic. Documented impact...

PT-2021-15176

Name of the Vulnerable Software and Affected Versions PowerLogic ION7400 affected versions not specified PowerLogic ION7650 affected versions not specified PowerLogic ION83xx/84xx/85xx/8600 affected versions not specified PowerLogic ION8650 affected versions not specified PowerLogic ION8800...

Schneider PowerLogic Product Information Disclosure Vulnerability

Schneider PowerLogic is an industrial control device from Schneider China. Provides increased power factor to improve power quality and troubleshoot power failures to protect networks, devices and operators. An information disclosure vulnerability exists in multiple Schneider PowerLogic products...

PT-2021-3898

Name of the Vulnerable Software and Affected Versions PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 affected versions not specified Description A Cleartext transmission of sensitive information issue exists, which could cause disclosure of...