Schneider Electric ConneXium Tofino Firewall SSH hard-coded credentials

A vulnerability classified as critical was found in Schneider Electric ConneXium Tofino Firewall (SCADA Software) (affected version unknown). Affected by this vulnerability is some unknown processing of the component SSH. Upgrading eliminates this vulnerability.

Field01/12/2022 05:55 PM01/15/2022 09:31 AM
vendorSchneider ElectricSchneider Electric
nameConneXium Tofino FirewallConneXium Tofino Firewall
componentSSHSSH
cwe798 (weak authentication)798 (weak authentication)
risk22
cvss3_vuldb_avNN
cvss3_vuldb_acHH
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cHH
cvss3_vuldb_iHH
cvss3_vuldb_aHH
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
identifierSEVD-2022-011-05SEVD-2022-011-05
urlhttps://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05
nameUpgradeUpgrade
cveCVE-2021-30064CVE-2021-30064
date1641942000 (01/12/2022)1641942000 (01/12/2022)
typeSCADA SoftwareSCADA Software
cvss2_vuldb_avNN
cvss2_vuldb_acHH
cvss2_vuldb_auNN
cvss2_vuldb_ciCC
cvss2_vuldb_iiCC
cvss2_vuldb_aiCC
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore7.67.6
cvss2_vuldb_tempscore6.66.6
cvss3_vuldb_basescore8.18.1
cvss3_vuldb_tempscore7.77.7
cvss3_meta_basescore8.18.1
cvss3_meta_tempscore7.77.7
price_0day$0-$5k$0-$5k
cve_assigned1617314400

Might our Artificial Intelligence support you?

Check our Alexa App!