CVE-2022-46680
8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
A CWE-319: Cleartext transmission of sensitive information vulnerability exists that could cause disclosure of sensitive information, denial of service, or modification of data if an attacker is able to intercept network traffic.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Schneider Electric | PowerLogic ION9000 | Prior to 4.0.0 | affected |
| Schneider Electric | PowerLogic ION7400 | Prior to 4.0.0 | affected |
| Schneider Electric | PowerLogic PM8000 | Prior to 4.0.0 | affected |
| Schneider Electric | PowerLogic ION8650 | All Versions | affected |
| Schneider Electric | PowerLogic ION8800 | All Versions | affected |
| Schneider Electric | Legacy ION products | All Versions | affected |
Weaknesses
- CWE-319: CWE-319 Cleartext Transmission of Sensitive Information
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.