Vulnerability Details CVE-2022-30237
A CWE-311: Missing Encryption of Sensitive Data vulnerability exists that could allow authentication credentials to be recovered when an attacker breaks the encoding. Affected Products: Wiser Smart, EER21000 & EER21001 (V4.5 and prior)
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.5%
CVSS Severity
CVSS v3 Score 8.2
CVSS v2 Score 5.0
References
Products affected by CVE-2022-30237
-
cpe:2.3:h:schneider-electric:wiser_smart_eer21000:-
-
cpe:2.3:h:schneider-electric:wiser_smart_eer21001:-
-
cpe:2.3:o:schneider-electric:wiser_smart_eer21000_firmware:4.5
-
cpe:2.3:o:schneider-electric:wiser_smart_eer21001_firmware:4.5