VDB
CVE-2022-22813
CVE-2022-22813
PUBLISHED
CVSS 9.800000190734863 CRITICAL
A CWE-798: Use of Hard-coded Credentials vulnerability exists. If an attacker were to obtain the TLS cryptographic key and take active control of the Courier tunneling communication network, they could potentially observe and manipulate traffic associated with product configuration.
EPSS 0.41% · 61.6th percentile
Risk Scores
CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.41%
61.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| schneider-electric | easergy_p444_firmware | |
| schneider-electric | easergy_p841_firmware | |
| schneider-electric | easergy_p542_firmware | |
| schneider-electric | easergy_p441_firmware | |
| schneider-electric | easergy_p443_firmware | |
| schneider-electric | easergy_p543_firmware | |
| schneider-electric | easergy_p341_firmware | |
| schneider-electric | easergy_p344_firmware | |
| schneider-electric | easergy_p342_firmware | |
| schneider-electric | easergy_p143_firmware | |
| schneider-electric | easergy_p442_firmware | |
| schneider-electric | easergy_p849_firmware | |
| schneider-electric | easergy_p243_firmware | |
| schneider-electric | easergy_p642_firmware | |
| schneider-electric | easergy_p145_firmware | |
| schneider-electric | easergy_p645_firmware | |
| schneider-electric | easergy_p541_firmware | |
| schneider-electric | easergy_p544_firmware | |
| schneider-electric | easergy_p545_firmware | |
| schneider-electric | easergy_p743_firmware |
…and 14 more
Exploit Intelligence
Timeline
- Feb 9, 2022 CVE Published
- Feb 10, 2022 EPSS Score
- Apr 3, 2022 EPSS Score
- May 26, 2022 EPSS Score
- Jul 18, 2022 EPSS Score
- Sep 9, 2022 EPSS Score
- Oct 31, 2022 EPSS Score
- Dec 22, 2022 EPSS Score
- Feb 13, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 6, 2023 EPSS Score
- May 28, 2023 EPSS Score
References
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-01 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-04 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-313-05 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-05 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-03 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-06 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-02 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-22813 advisory