Vulnerability Details CVE-2024-5313
CWE-668: Exposure of the Resource Wrong Sphere vulnerability exists that exposes a SSH
interface over the product network interface. This does not allow to directly exploit the product or
make any unintended operation as the SSH interface access is protected by an authentication
mechanism. Impacts are limited to port scanning and fingerprinting activities as well as attempts
to perform a potential denial of service attack on the exposed SSH interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.9%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2024-5313
-
cpe:2.3:h:schneider-electric:evlink_home:-
-
cpe:2.3:o:schneider-electric:evlink_home_firmware:2.0.3.8.2_128
-
cpe:2.3:o:schneider-electric:evlink_home_firmware:2.0.4.1.2_131