CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-22765

A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03

Products affected by CVE-2021-22765

Schneider-Electric » Powerlogic Egx100 » Version: N/A

cpe:2.3:h:schneider-electric:powerlogic_egx100:-
Schneider-Electric » Powerlogic Egx300 » Version: N/A

cpe:2.3:h:schneider-electric:powerlogic_egx300:-
Schneider-Electric » Powerlogic Egx100 Firmware » Version: 3.0.0

cpe:2.3:o:schneider-electric:powerlogic_egx100_firmware:3.0.0
Schneider-Electric » Powerlogic Egx300 Firmware » Version: N/A

cpe:2.3:o:schneider-electric:powerlogic_egx300_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-22765

Products

Pricing

Contact Us