CVE-2021-22765 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-22765 PUBLISHED CVSS 7.5 HIGH

A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet

EPSS 0.61% · 69.6th percentile

Risk Scores

CVSS v2.0

7.5

EPSS Score

0.61%

69.6th percentile

Affected Products

Vendor	Product	Versions
n/a	PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions)	PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions)
schneider-electric	powerlogic_egx300_firmware
schneider-electric	powerlogic_egx100_firmware	3.0.0

Timeline

Jun 9, 2021 CVE Published
Jun 12, 2021 EPSS Score
Aug 12, 2021 EPSS Score
Oct 11, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Feb 9, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Apr 10, 2022 EPSS Score
Jun 9, 2022 EPSS Score
Oct 8, 2022 EPSS Score
Dec 7, 2022 EPSS Score

References

Open in Interactive Console →