CVE-2022-34757

MEDIUM(6.7)

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H

Risk Signal Score17/100 — NIEDRIG

CVSS 6.7 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

6.7

Technische Schwere

Beschreibung

A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists where weak cipher suites can be used for the SSH connection between Easergy Pro software and the device, which may allow an attacker to observe protected communication details. Affected Products: Easergy P5 (V01.401.102 and prior)

Referenzen

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-193-04&p_enDoc...
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-193-04&p_enDoc...