Improper Verification of Cryptographic Signature vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause remote code execution when an attacker loads unauthorized code.
References
| Link | Resource |
|---|---|
| https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-130-04 | Vendor Advisory |
| https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-130-04 | Vendor Advisory |
Configurations
History
21 Nov 2024, 05:50
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-130-04 - Vendor Advisory |
04 Jun 2021, 14:17
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:schneider-electric:homelynk:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:spacelynk_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:homelynk_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:spacelynk:-:*:*:*:*:*:*:* |
|
| References | (MISC) https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-130-04 - Vendor Advisory | |
| CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 7.2 |
26 May 2021, 20:49
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-347 |
26 May 2021, 20:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2021-05-26 20:15
Updated : 2024-11-21 05:50
NVD link : CVE-2021-22734
Mitre link : CVE-2021-22734
CVE.ORG link : CVE-2021-22734
JSON object : View
Products Affected
schneider-electric
- homelynk
- spacelynk
- spacelynk_firmware
- homelynk_firmware
CWE
CWE-347
Improper Verification of Cryptographic Signature