CVE-2024-8070

Summary

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test credentials in the firmware binary

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricEVlink Home SmartAll versions prior to 2.0.6.0.0affected
Schneider ElectricSchneider ChargeAll versions prior to 1.13.4affected

Weaknesses

  • CWE-312: CWE-312 Cleartext Storage of Sensitive Information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References