Vulnerability Details CVE-2022-30232
A CWE-20: Improper Input Validation vulnerability exists that could cause potential remote code execution when an attacker is able to intercept and modify a request on the same network or has configuration access to an ION device on the network. Affected Products: Wiser Smart, EER21000 & EER21001 (V4.5 and prior)
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.1%
CVSS Severity
CVSS v3 Score 8.0
CVSS v2 Score 6.5
References
Products affected by CVE-2022-30232
-
cpe:2.3:h:schneider-electric:powerlogic_ion_setup:-
-
cpe:2.3:o:schneider-electric:powerlogic_ion_setup_firmware:*