7.5
CVSSv3

CVE-2021-22703

Published: 19/02/2021 Updated: 03/02/2022
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts HTTP network traffic between a user and the device.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

schneider-electric powerlogic ion7400 firmware

schneider-electric powerlogic ion7650 firmware

schneider-electric powerlogic ion8600 firmware

schneider-electric powerlogic ion8650 firmware

schneider-electric powerlogic ion8800 firmware

schneider-electric powerlogic ion9000 firmware

schneider-electric powerlogic pm8000 firmware

schneider-electric powerlogic ion8300 firmware

schneider-electric powerlogic ion8400 firmware

schneider-electric powerlogic ion8500 firmware