Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSchneiderCVELIST:CVE-2021-22825
HistoryJan 28, 2022 - 7:09 p.m.

CVE-2021-22825

2022-01-2819:09:40
schneider
www.cve.org
3
vulnerability
ap7xxxx
ap8xxx
apdu9xxx
nmc2
nmc3
security token
malicious url
elevated privileges
cwe-200
exposure of sensitive information
unauthorized actor
cve-2021-22825

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

42.8%

JSON

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could allow an attacker to access the system with elevated privileges when a privileged account clicks on a malicious URL that compromises the security token. Affected Products: AP7xxxx and AP8xxx with NMC2 (V6.9.6 or earlier), AP7xxx and AP8xxx with NMC3 (V1.1.0.3 or earlier), and APDU9xxx with NMC3 (V1.0.0.28 or earlier)

Related

ics 1
nvd 1
prion 1
cve 1
ics
ics
Schneider Electric Rack PDU (Update A)
2021-12-21 12:00:00
nvd
nvd
CVE-2021-22825
2022-01-28 20:15:10
prion
prion
Code injection
2022-01-28 20:15:00
cve
cve
CVE-2021-22825
2022-01-28 20:15:10

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

42.8%

JSON
Related for CVELIST:CVE-2021-22825
ics1nvd1prion1cve1