VDB
SEVD-2021-159-03
SEVD-2021-159-03
PUBLISHED
CVSS 8.100000381469727 HIGH
Schneider Electric is aware of multiple vulnerabilities in its PowerLogic EGX100 and EGX300 products. The PowerLogic EGX100 and EGX300 are communication gateway devices. Failure to apply the mitigations provided below may risk denial of service or remote code execution, which could result in loss of device functionality.
Risk Scores
CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schneider Electric EGX100 All Versions | ||
| Schneider Electric EGX100 Versions 3.0.0 and newer | ||
| Schneider Electric EGX300 All Versions |
Timeline
- Jun 8, 2021 CVE Published
References
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2021-159-03_PowerLogic_EGX100_and_EGX300_Security_Notification.pdf advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=sevd-2021-159-03.json advisory
- https://www.se.com/us/en/download/document/7EN52-0390/ url