Schneider-electric Evlink_parking_evp2pe_firmware
5 CVEs affecting Schneider-electric Evlink_parking_evp2pe_firmware. Latest disclosed: 2022-01-28. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-22820 | Critical | 9.8 | 2022-01-28 | A CWE-614 Insufficient Session Expiration vulnerability exists that could allow an attacker to maintain an unauthorized access over a hijacked session to the c… |
CVE-2021-22821 | High | 8.6 | 2022-01-28 | A CWE-918 Server-Side Request Forgery (SSRF) vulnerability exists that could cause the station web server to forward requests to unintended network targets whe… |
CVE-2021-22818 | High | 7.5 | 2022-01-28 | A CWE-307 Improper Restriction of Excessive Authentication Attempts vulnerability exists that could allow an attacker to gain unauthorized access to the chargi… |
CVE-2021-22822 | Medium | 6.1 | 2022-01-28 | A CWE-79 Improper Neutralization of Input During Web Page Generation (�Cross-site Scripting�) vulnerability exists that could allow an attacker to impersonate… |
CVE-2021-22819 | Medium | 4.3 | 2022-01-28 | A CWE-1021 Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause unintended modifications of the product settings or user… |