A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts Telnet network traffic between a user and the device.
References
Link | Resource |
---|---|
https://www.se.com/ww/en/download/document/SEVD-2021-040-01/ | Mitigation Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
History
03 Feb 2022, 16:17
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:se:powerlogic_ion8300_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion9000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion7650_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion8600_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion7400_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_pm8000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion8400_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion8800_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion8650_firmware:*:*:*:*:*:*:*:* |
cpe:2.3:o:schneider-electric:powerlogic_ion8600_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion8500_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion8400_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion8650_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion7650_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion8300_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_pm8000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion8800_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion9000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion7400_firmware:*:*:*:*:*:*:*:* |
31 Jan 2022, 20:07
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:se:powerlogic_ion9000:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion7300:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_pm8000:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion7700:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion8500:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion8650:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion7650:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion8600:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion7400:-:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion7700_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:se:powerlogic_ion7300_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion8300:-:*:*:*:*:*:*:* cpe:2.3:h:se:powerlogic_ion8400:-:*:*:*:*:*:*:* |
cpe:2.3:h:schneider-electric:powerlogic_ion7650:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion8400:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion7300:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion8600:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion8300:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion7400:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion9000:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion7700:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion7300_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion8500:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_pm8000:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:powerlogic_ion7700_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion8650:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:powerlogic_ion8800:-:*:*:*:*:*:*:* |
Information
Published : 2021-02-19 16:15
Updated : 2024-02-04 21:23
NVD link : CVE-2021-22702
Mitre link : CVE-2021-22702
CVE.ORG link : CVE-2021-22702
JSON object : View
Products Affected
schneider-electric
- powerlogic_ion9000
- powerlogic_ion7700_firmware
- powerlogic_ion7400
- powerlogic_pm8000_firmware
- powerlogic_ion8600_firmware
- powerlogic_ion8650
- powerlogic_ion7400_firmware
- powerlogic_ion8400_firmware
- powerlogic_ion8600
- powerlogic_ion7700
- powerlogic_ion7300
- powerlogic_pm8000
- powerlogic_ion8800
- powerlogic_ion8650_firmware
- powerlogic_ion7300_firmware
- powerlogic_ion8300
- powerlogic_ion7650
- powerlogic_ion9000_firmware
- powerlogic_ion8400
- powerlogic_ion7650_firmware
- powerlogic_ion8500
- powerlogic_ion8800_firmware
- powerlogic_ion8500_firmware
- powerlogic_ion8300_firmware
CWE
CWE-319
Cleartext Transmission of Sensitive Information