admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2022/34xxx/CVE-2022-34757.json

87 lines
3.1 KiB
JSON
Raw Normal View History

"-Synchronized-Data."
2022-06-28 16:00:49 +00:00
{
"CVE_data_meta": {
"-Synchronized-Data."
2022-07-13 22:00:46 +00:00
"ASSIGNER": "cybersecurity@schneider-electric.com",
update new batch of CVEs (CVE-2022-34753 - CVE-2022-34765
2022-07-13 14:03:55 -07:00
"DATE_PUBLIC": "2022-07-12T11:00:00.000Z",
"-Synchronized-Data."
2022-06-28 16:00:49 +00:00
"ID": "CVE-2022-34757",
update new batch of CVEs (CVE-2022-34753 - CVE-2022-34765
2022-07-13 14:03:55 -07:00
"STATE": "PUBLIC"
"-Synchronized-Data."
2022-06-28 16:00:49 +00:00
},
update new batch of CVEs (CVE-2022-34753 - CVE-2022-34765
2022-07-13 14:03:55 -07:00
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Easergy P5",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "Firmware",
"version_value": "V01.401.102 "
}
]
}
}
]
},
"vendor_name": "Schneider Electric"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"-Synchronized-Data."
2022-06-28 16:00:49 +00:00
"description": {
"description_data": [
{
"lang": "eng",
update new batch of CVEs (CVE-2022-34753 - CVE-2022-34765
2022-07-13 14:03:55 -07:00
"value": "A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists where weak cipher suites can be used for the SSH connection between Easergy Pro software and the device, which may allow an attacker to observe protected communication details. Affected Products: Easergy P5 (V01.401.102 and prior)"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-327 Use of a Broken or Risky Cryptographic Algorithm"
}
]
"-Synchronized-Data."
2022-06-28 16:00:49 +00:00
}
]
update new batch of CVEs (CVE-2022-34753 - CVE-2022-34765
2022-07-13 14:03:55 -07:00
},
"references": {
"reference_data": [
{
"-Synchronized-Data."
2022-07-13 22:00:46 +00:00
"refsource": "MISC",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-193-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-193-04_Easergy_P5_Security_Notification.pdf",
"name": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-193-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-193-04_Easergy_P5_Security_Notification.pdf"
update new batch of CVEs (CVE-2022-34753 - CVE-2022-34765
2022-07-13 14:03:55 -07:00
}
]
},
"source": {
"discovery": "UNKNOWN"
"-Synchronized-Data."
2022-06-28 16:00:49 +00:00
}
}
Reference in New Issue Copy Permalink