9.8

CVE-2022-22813

EPSS 0.41%
Published 09.02.2022 23:15:19
Last modified 21.11.2024 06:47:29
Source cybersecurity@se.com
Teams watchlist Login
Open Login

A CWE-798: Use of Hard-coded Credentials vulnerability exists. If an attacker were to obtain the TLS cryptographic key and take active control of the Courier tunneling communication network, they could potentially observe and manipulate traffic associated with product configuration.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Schneider-electric ≫ Easergy P141 Firmware Version-

Schneider-electric ≫ Easergy P141 Version-

Schneider-electric ≫ Easergy P142 Firmware Version-

Schneider-electric ≫ Easergy P142 Version-

Schneider-electric ≫ Easergy P143 Firmware Version-

Schneider-electric ≫ Easergy P143 Version-

Schneider-electric ≫ Easergy P145 Firmware Version-

Schneider-electric ≫ Easergy P145 Version-

Schneider-electric ≫ Easergy P241 Firmware Version-

Schneider-electric ≫ Easergy P241 Version-

Schneider-electric ≫ Easergy P242 Firmware Version-

Schneider-electric ≫ Easergy P242 Version-

Schneider-electric ≫ Easergy P243 Firmware Version-

Schneider-electric ≫ Easergy P243 Version-

Schneider-electric ≫ Easergy P342 Firmware Version-

Schneider-electric ≫ Easergy P342 Version-

Schneider-electric ≫ Easergy P343 Firmware Version-

Schneider-electric ≫ Easergy P343 Version-

Schneider-electric ≫ Easergy P344 Firmware Version-

Schneider-electric ≫ Easergy P344 Version-

Schneider-electric ≫ Easergy P345 Firmware Version-

Schneider-electric ≫ Easergy P345 Version-

Schneider-electric ≫ Easergy P441 Firmware Version-

Schneider-electric ≫ Easergy P441 Version-

Schneider-electric ≫ Easergy P442 Firmware Version-

Schneider-electric ≫ Easergy P442 Version-

Schneider-electric ≫ Easergy P443 Firmware Version-

Schneider-electric ≫ Easergy P443 Version-

Schneider-electric ≫ Easergy P444 Firmware Version-

Schneider-electric ≫ Easergy P444 Version-

Schneider-electric ≫ Easergy P445 Firmware Version-

Schneider-electric ≫ Easergy P445 Version-

Schneider-electric ≫ Easergy P446 Firmware Version-

Schneider-electric ≫ Easergy P446 Version-

Schneider-electric ≫ Easergy P541 Firmware Version-

Schneider-electric ≫ Easergy P541 Version-

Schneider-electric ≫ Easergy P542 Firmware Version-

Schneider-electric ≫ Easergy P542 Version-

Schneider-electric ≫ Easergy P543 Firmware Version-

Schneider-electric ≫ Easergy P543 Version-

Schneider-electric ≫ Easergy P544 Firmware Version-

Schneider-electric ≫ Easergy P544 Version-

Schneider-electric ≫ Easergy P545 Firmware Version-

Schneider-electric ≫ Easergy P545 Version-

Schneider-electric ≫ Easergy P546 Firmware Version-

Schneider-electric ≫ Easergy P546 Version-

Schneider-electric ≫ Easergy P642 Firmware Version-

Schneider-electric ≫ Easergy P642 Version-

Schneider-electric ≫ Easergy P643 Firmware Version-

Schneider-electric ≫ Easergy P643 Version-

Schneider-electric ≫ Easergy P645 Firmware Version-

Schneider-electric ≫ Easergy P645 Version-

Schneider-electric ≫ Easergy P741 Firmware Version-

Schneider-electric ≫ Easergy P741 Version-

Schneider-electric ≫ Easergy P742 Firmware Version-

Schneider-electric ≫ Easergy P742 Version-

Schneider-electric ≫ Easergy P743 Firmware Version-

Schneider-electric ≫ Easergy P743 Version-

Schneider-electric ≫ Easergy P746 Firmware Version-

Schneider-electric ≫ Easergy P746 Version-

Schneider-electric ≫ Easergy P341 Firmware Version-

Schneider-electric ≫ Easergy P341 Version-

Schneider-electric ≫ Easergy P841 Firmware Version-

Schneider-electric ≫ Easergy P841 Version-

Schneider-electric ≫ Easergy P849 Firmware Version-

Schneider-electric ≫ Easergy P849 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.41%	0.582

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-798 Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-03

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-22813

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-22813

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-22813

EUVD