Headline
CVE-2022-30232: Security Notification - PowerLogic ION Setup | Schneider Electric
A CWE-20: Improper Input Validation vulnerability exists that could cause potential remote code execution when an attacker is able to intercept and modify a request on the same network or has configuration access to an ION device on the network. Affected Products: Wiser Smart, EER21000 & EER21001 (V4.5 and prior)
Schneider Electric is aware of a vulnerability in its PowerLogic ION Setup product. The PowerLogic ION Setup product is an engineering tool for configuration and maintenance of PowerLogic metering devices. Failure to apply the remediations provided below may risk remote code execution, which could result in a compromise of the engineering workstation running the ION Setup software.
Date : 06/05/2022 Type : Security and Safety Notice
Languages : English Latest Version : 1.0
Reference : SEVD-2022-130-01
Date : 06/05/2022 Type : Security and Safety Notice Languages : English Latest Version : 1.0 Reference : SEVD-2022-130-01