CVE-2017-7928

Summary

An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The device does not properly enforce access control while configured for NAT port forwarding, which may allow for unauthorized communications to downstream devices.

Affected Software

VendorProductVersion RangeStatus
n/aSchweitzer Engineering Laboratories, Inc. SEL-3620 and SEL-3622Schweitzer Engineering Laboratories, Inc. SEL-3620 and SEL-3622affected

Weaknesses

  • CWE-284: CWE-284

ADP Enrichment

CVE Program Container

Additional References

References