Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-22713
HistoryMar 11, 2021 - 9:15 p.m.

CVE-2021-22713

2021-03-1121:15:12
CWE-119
[email protected]
web.nvd.nist.gov
2
cve-2021-22713
cwe-119
powerlogic ion8650
ion8800
ion7650
ion7700
ion73xx
ion83xx
ion84xx
ion85xx
ion8600
memory buffer vulnerability
affected versions
meter reboot

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

35.4%

JSON

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600 (see security notifcation for affected versions), which could cause the meter to reboot.

Affected configurations

Nvd
Node
schneider-electricpowerlogic_ion8650_firmwareRange<4.40.1
AND
schneider-electricpowerlogic_ion8650Match-
Node
schneider-electricpowerlogic_ion8800_firmwareRange<372
AND
schneider-electricpowerlogic_ion8800Match-
Node
schneider-electricpowerlogic_ion7550_firmwareRange<376
AND
schneider-electricpowerlogic_ion7550Match4.0
Node
schneider-electricpowerlogic_ion7650_firmwareRange<376
AND
schneider-electricpowerlogic_ion7650Match4.0
Node
schneider-electricpowerlogic_ion7700_firmware
AND
schneider-electricpowerlogic_ion7700Match-
Node
schneider-electricpowerlogic_ion7300_firmware
AND
schneider-electricpowerlogic_ion7300Match-
Node
schneider-electricpowerlogic_ion8300_firmware
AND
schneider-electricpowerlogic_ion8300Match-
Node
schneider-electricpowerlogic_ion8400_firmware
AND
schneider-electricpowerlogic_ion8400Match-
Node
schneider-electricpowerlogic_ion8500_firmware
AND
schneider-electricpowerlogic_ion8500Match-
Node
schneider-electricpowerlogic_ion8600_firmware
AND
schneider-electricpowerlogic_ion8600Match-
Node
schneider-electricpowerlogic_ion7550_firmwareRange<416
AND
schneider-electricpowerlogic_ion7550Match5.0
Node
schneider-electricion7650_firmwareRange<416
AND
schneider-electricpowerlogic_ion7650Match5.0
VendorProductVersionCPE
schneider-electricpowerlogic_ion8650_firmware*cpe:2.3:o:schneider-electric:powerlogic_ion8650_firmware:*:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion8650-cpe:2.3:h:schneider-electric:powerlogic_ion8650:-:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion8800_firmware*cpe:2.3:o:schneider-electric:powerlogic_ion8800_firmware:*:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion8800-cpe:2.3:h:schneider-electric:powerlogic_ion8800:-:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion7550_firmware*cpe:2.3:o:schneider-electric:powerlogic_ion7550_firmware:*:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion75504.0cpe:2.3:h:schneider-electric:powerlogic_ion7550:4.0:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion7650_firmware*cpe:2.3:o:schneider-electric:powerlogic_ion7650_firmware:*:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion76504.0cpe:2.3:h:schneider-electric:powerlogic_ion7650:4.0:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion7700_firmware*cpe:2.3:o:schneider-electric:powerlogic_ion7700_firmware:*:*:*:*:*:*:*:*
schneider-electricpowerlogic_ion7700-cpe:2.3:h:schneider-electric:powerlogic_ion7700:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 231

Related

nessus 1
prion 1
cvelist 1
cve 1
threatpost 1
nessus
nessus
Schneider Electric PowerLogic Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2021-22713)
2022-07-21 00:00:00
prion
prion
Design/Logic Flaw
2021-03-11 21:15:00
cvelist
cvelist
CVE-2021-22713
2021-03-11 20:15:27
cve
cve
CVE-2021-22713
2021-03-11 21:15:12
threatpost
threatpost
Critical Security Bug Can Knock Smart Meters Offline
2021-03-12 21:42:59

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

35.4%

JSON
Related for NVD:CVE-2021-22713
nessus1prion1cvelist1cve1threatpost1