CVE-2022-46680

Summary

A CWE-319: Cleartext transmission of sensitive information vulnerability exists that could cause disclosure of sensitive information, denial of service, or modification of data if an attacker is able to intercept network traffic.

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricPowerLogic ION9000Prior to 4.0.0affected
Schneider ElectricPowerLogic ION7400Prior to 4.0.0affected
Schneider ElectricPowerLogic PM8000Prior to 4.0.0affected
Schneider ElectricPowerLogic ION8650All Versionsaffected
Schneider ElectricPowerLogic ION8800All Versionsaffected
Schneider ElectricLegacy ION productsAll Versionsaffected

Weaknesses

  • CWE-319: CWE-319 Cleartext Transmission of Sensitive Information

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References