VDB

CVE-2021-22768

CVE-2021-22768 PUBLISHED CVSS 7.5 HIGH

A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet.This CVE ID is unique from CVE-2021-22767

EPSS 0.79% · 74.3th percentile

Risk Scores

CVSS 2.0
7.5
EPSS Score
0.79%
74.3th percentile

Affected Products

VendorProductVersions
schneider-electricpowerlogic_egx300_firmware
n/aPowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions)*
schneider-electricpowerlogic_egx100_firmware3.0.0

Timeline

  • Jun 9, 2021 CVE Published
  • Jun 12, 2021 EPSS Score
  • Aug 13, 2021 EPSS Score
  • Oct 12, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 11, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Apr 13, 2022 EPSS Score
  • Aug 13, 2022 EPSS Score
  • Oct 13, 2022 EPSS Score
  • Dec 13, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›