Schneider-electric Conext Combox Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Conext Combox Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-32515 — CVSS 8.6 (high): A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that could cause brute force attacks to take over…
CVE-2021-22798 — CVSS 7.5 (high): A CWE-522: Insufficiently Protected Credentials vulnerability exists that could cause Sensitive data such as login credentials being…
CVE-2022-32516 — CVSS 7.5 (high): A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists that could cause system’s configurations override and cause a reboot…
CVE-2022-32517 — CVSS 6.5 (medium): A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause an adversary to trick the interface…