Schneider-electric Fellerlynk Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Fellerlynk Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-22810 — CVSS 9.8 (critical): A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that could allow an attacker to manipulate the…
CVE-2022-22811 — CVSS 8.1 (high): A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists that could induce users to perform unintended actions, leading to the…
CVE-2021-22806 — CVSS 7.5 (high): A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could cause data exfiltration and unauthorized access when…
CVE-2022-22812 — CVSS 6.1 (medium): A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause a web…
CVE-2022-22809 — CVSS 5.3 (medium): A CWE-306: Missing Authentication for Critical Function vulnerability exists that could allow modifications of the touch configurations in…