VDB

CVE-2021-22763

CVE-2021-22763 PUBLISHED CVSS 10 CRITICAL

A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation) that could allow an attacker administrator level access to a device.

EPSS 0.27% · 50.4th percentile

Risk Scores

CVSS 2.0
10
EPSS Score
0.27%
50.4th percentile

Affected Products

VendorProductVersions
n/aPowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation)PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation)
schneider-electricpowerlogic_pm5560_firmware0
schneider-electricpowerlogic_pm5562_firmware0
schneider-electricpowerlogic_pm5561_firmware0
schneider-electricpowerlogic_pm8ecc_firmware
schneider-electricpowerlogic_pm5563_firmware0

Timeline

  • Jun 9, 2021 CVE Published
  • Jun 12, 2021 EPSS Score
  • Aug 13, 2021 EPSS Score
  • Oct 12, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 11, 2022 EPSS Score
  • Mar 20, 2022 EPSS Score
  • Apr 13, 2022 EPSS Score
  • Jun 12, 2022 EPSS Score
  • Aug 13, 2022 EPSS Score
  • Oct 13, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›