PT-2022-6633 · Schneider Electric · Schneider Electric Easergy P40
Published
2022-02-09
·
Updated
2022-12-08
·
CVE-2022-22813
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Schneider Electric Easergy P40 (affected versions not specified)
Description
A Use of Hard-coded Credentials issue exists, potentially allowing an attacker to observe and manipulate traffic associated with product configuration if they obtain the TLS cryptographic key and gain control of the communication network.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Schneider Electric Easergy P40