Vulnerability Details CVE-2020-7548
A CWE-330 - Use of Insufficiently Random Values vulnerability exists in Smartlink, PowerTag, and Wiser Series Gateways (see security notification for version information) that could allow unauthorized users to login.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-7548
-
cpe:2.3:h:schneider-electric:acti9_powertag_link:-
-
cpe:2.3:h:schneider-electric:acti9_powertag_link_hd:-
-
cpe:2.3:h:schneider-electric:acti9_smartlink_el_b:-
-
cpe:2.3:h:schneider-electric:acti9_smartlink_si_b:-
-
cpe:2.3:h:schneider-electric:acti9_smartlink_si_d:-
-
cpe:2.3:h:schneider-electric:wiser_energy:-
-
cpe:2.3:h:schneider-electric:wiser_link:-
-
cpe:2.3:o:schneider-electric:acti9_powertag_link_firmware:-
-
cpe:2.3:o:schneider-electric:acti9_powertag_link_hd_firmware:-
-
cpe:2.3:o:schneider-electric:acti9_smartlink_el_b_firmware:-
-
cpe:2.3:o:schneider-electric:acti9_smartlink_si_b_firmware:-
-
cpe:2.3:o:schneider-electric:acti9_smartlink_si_d_firmware:-
-
cpe:2.3:o:schneider-electric:wiser_energy_firmware:-
-
cpe:2.3:o:schneider-electric:wiser_link_firmware:-