CVE-2022-22813 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-22813 PUBLISHED CVSS 9.800000190734863 CRITICAL

A CWE-798: Use of Hard-coded Credentials vulnerability exists. If an attacker were to obtain the TLS cryptographic key and take active control of the Courier tunneling communication network, they could potentially observe and manipulate traffic associated with product configuration.

EPSS 0.41% · 61.0th percentile

Risk Scores

CVSS v3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.41%

61.0th percentile

Affected Products

Vendor	Product	Versions
schneider-electric	easergy_p444_firmware
schneider-electric	easergy_p841_firmware
schneider-electric	easergy_p542_firmware
schneider-electric	easergy_p441_firmware
schneider-electric	easergy_p443_firmware
schneider-electric	easergy_p543_firmware
schneider-electric	easergy_p341_firmware
schneider-electric	easergy_p344_firmware
schneider-electric	easergy_p342_firmware
schneider-electric	easergy_p143_firmware
schneider-electric	easergy_p442_firmware
schneider-electric	easergy_p849_firmware
schneider-electric	easergy_p243_firmware
schneider-electric	easergy_p642_firmware
schneider-electric	easergy_p145_firmware
schneider-electric	easergy_p645_firmware
schneider-electric	easergy_p541_firmware
schneider-electric	easergy_p544_firmware
schneider-electric	easergy_p545_firmware
schneider-electric	easergy_p743_firmware

…and 14 more

Timeline

Feb 9, 2022 CVE Published
Feb 10, 2022 EPSS Score
Apr 3, 2022 EPSS Score
May 25, 2022 EPSS Score
Jul 16, 2022 EPSS Score
Sep 6, 2022 EPSS Score
Oct 28, 2022 EPSS Score
Dec 19, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 1, 2023 EPSS Score
May 23, 2023 EPSS Score

References

Open in Interactive Console →