CVE-2024-0568

Summary

CWE-287: Improper Authentication vulnerability exists that could cause unauthorized tampering of device configuration over NFC communication.

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricHarmony Control Relay RMNF22TB30All versionsaffected
Schneider ElectricHarmony Timer Relay RENF22R2MMWAll Versionsaffected

Weaknesses

  • CWE-287: CWE-287 Improper Authentication

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References