Details of VAR-202107-1799

ID

VAR-202107-1799

TITLE

Schneider Electric (China) Co., Ltd. PowerLogic ION8600 has an unauthorized access vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-41229

DESCRIPTION

Schneider Electric (China) Co., Ltd. is a company whose main business includes power, industrial automation, infrastructure, energy efficiency, energy, building automation and security electronics, data centers and smart living spaces. Schneider Electric (China) Co., Ltd. PowerLogic ION8600 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-41229

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-41229

AFFECTED PRODUCTS

vendor:

schneider electric

model:

powerlogic ion8600

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-41229

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-41229
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-41229
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-41229

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-41229

Trust: 0.6

sources: CNVD: CNVD-2021-41229

SOURCES

db:

CNVD

id:

CNVD-2021-41229

LAST UPDATE DATE

2022-05-04T09:37:42.010000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-41229

date:

2021-06-13T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-41229

date:

2021-07-16T00:00:00