Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-22805 (GCVE-0-2022-22805)
Vulnerability from cvelistv5 – Published: 2022-03-09 19:30 – Updated: 2024-08-03 03:21
VLAI
EPSS
Summary
A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)
Severity
9.8 (Critical)
CWE
- CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.se.com/ww/en/download/document/SEVD-2… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Schneider Electric | SmartConnect |
Affected:
SMT Series
Affected: SMC Series Affected: SMTL Series Affected: SCL Series Affected: SMX Series |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T03:21:49.170Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SmartConnect",
"vendor": "Schneider Electric",
"versions": [
{
"status": "affected",
"version": "SMT Series"
},
{
"status": "affected",
"version": "SMC Series"
},
{
"status": "affected",
"version": "SMTL Series"
},
{
"status": "affected",
"version": "SCL Series"
},
{
"status": "affected",
"version": "SMX Series"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-120",
"description": "CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-03-28T16:25:28.000Z",
"orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
"shortName": "schneider"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/"
}
],
"source": {
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2022-22805",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SmartConnect",
"version": {
"version_data": [
{
"version_value": "SMT Series"
},
{
"version_value": "SMC Series"
},
{
"version_value": "SMTL Series"
},
{
"version_value": "SCL Series"
},
{
"version_value": "SMX Series"
}
]
}
}
]
},
"vendor_name": "Schneider Electric"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/",
"refsource": "MISC",
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
"assignerShortName": "schneider",
"cveId": "CVE-2022-22805",
"datePublished": "2022-03-09T19:30:16.000Z",
"dateReserved": "2022-01-07T00:00:00.000Z",
"dateUpdated": "2024-08-03T03:21:49.170Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-22805",
"date": "2026-06-05",
"epss": "0.082",
"percentile": "0.92365"
},
"fkie_nvd": {
"configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:smt_series_1015_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"04.5\", \"matchCriteriaId\": \"2C3EA55B-DB09-4124-A9D9-A92431C38D1F\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:smt_series_1015_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"95C1E3D9-606B-4C57-A4E7-0A45C9D46332\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:smc_series_1018_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"04.2\", \"matchCriteriaId\": \"FFE2D844-ED18-44D3-9E75-4BB3082E4B51\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:smc_series_1018_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"154E788E-173C-4D16-A492-B61D39D420EF\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:smtl_series_1026_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"02.9\", \"matchCriteriaId\": \"AE693F05-B0A7-452D-94C6-D36E37ACF6CB\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:smtl_series_1026_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B138EB4-6264-4BFA-B4C7-4B23FFA676B1\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:scl_series_1029_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"02.5\", \"matchCriteriaId\": \"C2E0803A-637E-4BBA-B9D5-AB59EE122844\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:scl_series_1029_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4175BEC7-DA4D-4E19-A642-A5FC13D3598E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:scl_series_1030_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"02.5\", \"matchCriteriaId\": \"469F9813-DE0E-4752-91EB-FECC001C6825\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:scl_series_1030_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8DC43CB-66C0-469B-AF87-0120D6280584\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:scl_series_1036_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"02.5\", \"matchCriteriaId\": \"22E4C951-876D-46F7-8CF4-D943464E8338\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:scl_series_1036_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9FB7E0EB-AF6D-4107-B343-50309E9DF03E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:scl_series_1037_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"03.1\", \"matchCriteriaId\": \"3E52A522-88D4-4B6A-83B4-C56C093C7F54\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:scl_series_1037_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"04C627CE-E3F8-4E3F-8B93-07C92AA21296\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:schneider-electric:smx_series_1031_ups_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"03.1\", \"matchCriteriaId\": \"6251AE4E-FFED-4B0C-A90B-A3BD852A2ED8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:schneider-electric:smx_series_1031_ups:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9E1E7040-8123-483C-AE62-F190D83D0ADC\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)\"}, {\"lang\": \"es\", \"value\": \"Existe una vulnerabilidad CWE-120: Copia del b\\u00fafer sin comprobar el tama\\u00f1o de la entrada (\u0027Desbordamiento cl\\u00e1sico del b\\u00fafer\u0027) que podr\\u00eda causar la ejecuci\\u00f3n remota de c\\u00f3digo cuando se reensambla un paquete TLS mal gestionado. Producto afectado: Familia SmartConnect: Serie SMT (SMT Series ID=1015: UPS 04.5 y anteriores), Serie SMC (SMC Series ID=1018: UPS 04.2 y anteriores), Serie SMTL (SMTL Series ID=1026: UPS 02.9 y anteriores), Serie SCL (SCL Series ID=1029: UPS 02. 5 y anteriores / SCL Series ID=1030: UPS 02.5 y anteriores / SCL Series ID=1036: UPS 02.5 y anteriores / SCL Series ID=1037: UPS 03.1 y anteriores), SMX Series (SMX Series ID=1031: UPS 03.1 y anteriores)\"}]",
"id": "CVE-2022-22805",
"lastModified": "2024-11-21T06:47:28.807",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2022-03-09T20:15:08.460",
"references": "[{\"url\": \"https://www.se.com/ww/en/download/document/SEVD-2022-067-02/\", \"source\": \"cybersecurity@se.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.se.com/ww/en/download/document/SEVD-2022-067-02/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "cybersecurity@se.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"cybersecurity@se.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-120\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-120\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-22805\",\"sourceIdentifier\":\"cybersecurity@se.com\",\"published\":\"2022-03-09T20:15:08.460\",\"lastModified\":\"2024-11-21T06:47:28.807\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)\"},{\"lang\":\"es\",\"value\":\"Existe una vulnerabilidad CWE-120: Copia del b\u00fafer sin comprobar el tama\u00f1o de la entrada (\u0027Desbordamiento cl\u00e1sico del b\u00fafer\u0027) que podr\u00eda causar la ejecuci\u00f3n remota de c\u00f3digo cuando se reensambla un paquete TLS mal gestionado. Producto afectado: Familia SmartConnect: Serie SMT (SMT Series ID=1015: UPS 04.5 y anteriores), Serie SMC (SMC Series ID=1018: UPS 04.2 y anteriores), Serie SMTL (SMTL Series ID=1026: UPS 02.9 y anteriores), Serie SCL (SCL Series ID=1029: UPS 02. 5 y anteriores / SCL Series ID=1030: UPS 02.5 y anteriores / SCL Series ID=1036: UPS 02.5 y anteriores / SCL Series ID=1037: UPS 03.1 y anteriores), SMX Series (SMX Series ID=1031: UPS 03.1 y anteriores)\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"cybersecurity@se.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:smt_series_1015_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"04.5\",\"matchCriteriaId\":\"2C3EA55B-DB09-4124-A9D9-A92431C38D1F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:smt_series_1015_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95C1E3D9-606B-4C57-A4E7-0A45C9D46332\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:smc_series_1018_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"04.2\",\"matchCriteriaId\":\"FFE2D844-ED18-44D3-9E75-4BB3082E4B51\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:smc_series_1018_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"154E788E-173C-4D16-A492-B61D39D420EF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:smtl_series_1026_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"02.9\",\"matchCriteriaId\":\"AE693F05-B0A7-452D-94C6-D36E37ACF6CB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:smtl_series_1026_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B138EB4-6264-4BFA-B4C7-4B23FFA676B1\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:scl_series_1029_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"02.5\",\"matchCriteriaId\":\"C2E0803A-637E-4BBA-B9D5-AB59EE122844\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:scl_series_1029_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4175BEC7-DA4D-4E19-A642-A5FC13D3598E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:scl_series_1030_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"02.5\",\"matchCriteriaId\":\"469F9813-DE0E-4752-91EB-FECC001C6825\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:scl_series_1030_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8DC43CB-66C0-469B-AF87-0120D6280584\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:scl_series_1036_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"02.5\",\"matchCriteriaId\":\"22E4C951-876D-46F7-8CF4-D943464E8338\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:scl_series_1036_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FB7E0EB-AF6D-4107-B343-50309E9DF03E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:scl_series_1037_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"03.1\",\"matchCriteriaId\":\"3E52A522-88D4-4B6A-83B4-C56C093C7F54\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:scl_series_1037_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04C627CE-E3F8-4E3F-8B93-07C92AA21296\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:schneider-electric:smx_series_1031_ups_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"03.1\",\"matchCriteriaId\":\"6251AE4E-FFED-4B0C-A90B-A3BD852A2ED8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:schneider-electric:smx_series_1031_ups:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E1E7040-8123-483C-AE62-F190D83D0ADC\"}]}]}],\"references\":[{\"url\":\"https://www.se.com/ww/en/download/document/SEVD-2022-067-02/\",\"source\":\"cybersecurity@se.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.se.com/ww/en/download/document/SEVD-2022-067-02/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
FKIE_CVE-2022-22805
Vulnerability from fkie_nvd - Published: 2022-03-09 20:15 - Updated: 2024-11-21 06:47
Severity
Summary
A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:smt_series_1015_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2C3EA55B-DB09-4124-A9D9-A92431C38D1F",
"versionEndIncluding": "04.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:smt_series_1015_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "95C1E3D9-606B-4C57-A4E7-0A45C9D46332",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:smc_series_1018_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FFE2D844-ED18-44D3-9E75-4BB3082E4B51",
"versionEndIncluding": "04.2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:smc_series_1018_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "154E788E-173C-4D16-A492-B61D39D420EF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:smtl_series_1026_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AE693F05-B0A7-452D-94C6-D36E37ACF6CB",
"versionEndIncluding": "02.9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:smtl_series_1026_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6B138EB4-6264-4BFA-B4C7-4B23FFA676B1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:scl_series_1029_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C2E0803A-637E-4BBA-B9D5-AB59EE122844",
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:scl_series_1029_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4175BEC7-DA4D-4E19-A642-A5FC13D3598E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:scl_series_1030_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "469F9813-DE0E-4752-91EB-FECC001C6825",
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:scl_series_1030_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E8DC43CB-66C0-469B-AF87-0120D6280584",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:scl_series_1036_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "22E4C951-876D-46F7-8CF4-D943464E8338",
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:scl_series_1036_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9FB7E0EB-AF6D-4107-B343-50309E9DF03E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:scl_series_1037_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3E52A522-88D4-4B6A-83B4-C56C093C7F54",
"versionEndIncluding": "03.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:scl_series_1037_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "04C627CE-E3F8-4E3F-8B93-07C92AA21296",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:smx_series_1031_ups_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6251AE4E-FFED-4B0C-A90B-A3BD852A2ED8",
"versionEndIncluding": "03.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:smx_series_1031_ups:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E1E7040-8123-483C-AE62-F190D83D0ADC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)"
},
{
"lang": "es",
"value": "Existe una vulnerabilidad CWE-120: Copia del b\u00fafer sin comprobar el tama\u00f1o de la entrada (\u0027Desbordamiento cl\u00e1sico del b\u00fafer\u0027) que podr\u00eda causar la ejecuci\u00f3n remota de c\u00f3digo cuando se reensambla un paquete TLS mal gestionado. Producto afectado: Familia SmartConnect: Serie SMT (SMT Series ID=1015: UPS 04.5 y anteriores), Serie SMC (SMC Series ID=1018: UPS 04.2 y anteriores), Serie SMTL (SMTL Series ID=1026: UPS 02.9 y anteriores), Serie SCL (SCL Series ID=1029: UPS 02. 5 y anteriores / SCL Series ID=1030: UPS 02.5 y anteriores / SCL Series ID=1036: UPS 02.5 y anteriores / SCL Series ID=1037: UPS 03.1 y anteriores), SMX Series (SMX Series ID=1031: UPS 03.1 y anteriores)"
}
],
"id": "CVE-2022-22805",
"lastModified": "2024-11-21T06:47:28.807",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-03-09T20:15:08.460",
"references": [
{
"source": "cybersecurity@se.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/"
}
],
"sourceIdentifier": "cybersecurity@se.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-120"
}
],
"source": "cybersecurity@se.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-120"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
GHSA-W827-Q88J-8C47
Vulnerability from github – Published: 2022-03-10 00:00 – Updated: 2022-03-19 00:01
VLAI
Details
A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled.
Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)
Severity
9.8 (Critical)
{
"affected": [],
"aliases": [
"CVE-2022-22805"
],
"database_specific": {
"cwe_ids": [
"CWE-120"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-03-09T20:15:00Z",
"severity": "CRITICAL"
},
"details": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled.\n\nAffected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)",
"id": "GHSA-w827-q88j-8c47",
"modified": "2022-03-19T00:01:37Z",
"published": "2022-03-10T00:00:30Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22805"
},
{
"type": "WEB",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-067-02"
},
{
"type": "WEB",
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2022-22805
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-22805",
"description": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled.\n\nAffected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)",
"id": "GSD-2022-22805"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-22805"
],
"details": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)",
"id": "GSD-2022-22805",
"modified": "2023-12-13T01:19:28.919967Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2022-22805",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SmartConnect ",
"version": {
"version_data": [
{
"version_value": "SMT Series "
},
{
"version_value": "SMC Series"
},
{
"version_value": "SMTL Series"
},
{
"version_value": "SCL Series"
},
{
"version_value": "SMX Series"
}
]
}
}
]
},
"vendor_name": "Schneider Electric"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/",
"refsource": "MISC",
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smt_series_1015_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "04.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smt_series_1015_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smc_series_1018_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "04.2",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smc_series_1018_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smtl_series_1026_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.9",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smtl_series_1026_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1029_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1029_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1030_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1030_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1036_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1036_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1037_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "03.1",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1037_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smx_series_1031_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "03.1",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smx_series_1031_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2022-22805"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-120"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://www.se.com/ww/en/download/document/SEVD-2022-067-02/"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2022-05-12T20:42Z",
"publishedDate": "2022-03-09T20:15Z"
}
}
}
SEVD-2022-067-02
Vulnerability from csaf_se - Published: 2022-03-08 06:30 - Updated: 2022-06-16 18:30Summary
APC Smart-UPS SMT, SMC, SMX, SCL, SRC, XU, XP, CSH2, SURTD, SMTL, SRT, and select SRTL Series
Notes
General Security Recommendations: We strongly recommend the following industry cybersecurity best practices.
https://www.se.com/us/en/download/document/7EN52-0390/
* Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network.
* Install physical controls so no unauthorized personnel can access your industrial control and safety systems, components, peripheral equipment, and networks.
* Place all controllers in locked cabinets and never leave them in the “Program” mode.
* Never connect programming software to any network other than the network intended for that device.
* Scan all methods of mobile data exchange with the isolated network such as CDs, USB drives, etc. before use in the terminals or any node connected to these networks.
* Never allow mobile devices that have connected to any other network besides the intended network to connect to the safety or control networks without proper sanitation.
* Minimize network exposure for all control system devices and systems and ensure that they are not accessible from the Internet.
* When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Recognize that VPNs may have vulnerabilities and should be updated to the most current version available. Also, understand that VPNs are only as secure as the connected devices.
For more information refer to the Schneider Electric Recommended Cybersecurity Best Practices document.
For More Information: This document provides an overview of the identified vulnerability or vulnerabilities and actions required to mitigate. For more details and assistance on how to protect your installation, contact your local Schneider Electric representative or Schneider Electric Industrial Cybersecurity Services: https://www.se.com/ww/en/work/solutions/cybersecurity/. These organizations will be fully aware of this situation and can support you through the process.
For further information related to cybersecurity in Schneider Electric’s products, visit the company’s cybersecurity support portal page: https://www.se.com/ww/en/work/support/cybersecurity/overview.jsp
LEGAL DISCLAIMER: THIS NOTIFICATION DOCUMENT, THE INFORMATION CONTAINED HEREIN, AND ANY MATERIALS LINKED FROM IT (COLLECTIVELY, THIS “NOTIFICATION”) ARE INTENDED TO HELP PROVIDE AN OVERVIEW OF THE IDENTIFIED SITUATION AND SUGGESTED MITIGATION ACTIONS, REMEDIATION, FIX, AND/OR GENERAL SECURITY RECOMMENDATIONS AND IS PROVIDED ON AN “AS-IS” BASIS WITHOUT WARRANTY OR GUARANTEE OF ANY KIND. SCHNEIDER ELECTRIC DISCLAIMS ALL WARRANTIES RELATING TO THIS NOTIFICATION, EITHER EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SCHNEIDER ELECTRIC MAKES NO WARRANTY THAT THE NOTIFICATION WILL RESOLVE THE IDENTIFIED SITUATION. IN NO EVENT SHALL SCHNEIDER ELECTRIC BE LIABLE FOR ANY DAMAGES OR LOSSES WHATSOEVER IN CONNECTION WITH THIS NOTIFICATION, INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF SCHNEIDER ELECTRIC HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOUR USE OF THIS NOTIFICATION IS AT YOUR OWN RISK, AND YOU ARE SOLELY LIABLE FOR ANY DAMAGES TO YOUR SYSTEMS OR ASSETS OR OTHER LOSSES THAT MAY RESULT FROM YOUR USE OF THIS NOTIFICATION. SCHNEIDER ELECTRIC RESERVES THE RIGHT TO UPDATE OR CHANGE THIS NOTIFICATION AT ANY TIME AND IN ITS SOLE DISCRETION
About Schneider Electric: At Schneider, we believe access to energy and digital is a basic human right. We empower all to do more with less, ensuring Life Is On everywhere, for everyone, at every moment.
We provide energy and automation digital solutions for efficiency and sustainability. We combine world-leading energy technologies, real-time automation, software and services into integrated solutions for Homes, Buildings, Data Centers, Infrastructure and Industries.
We are committed to unleash the infinite possibilities of an open, global, innovative community that is passionate with our Meaningful Purpose, Inclusive and Empowered values.
www.se.com
Overview: Schneider Electric is aware of the vulnerabilities associated with APC Smart-UPS uninterruptable power supply devices which, if compromised, may allow for potential unauthorized access and control of the device. Upon learning of these vulnerabilities, we worked diligently to develop remediations and mitigations, and disclose in a timely, responsible manner so that our customers and end-users can better protect their people, assets, and operations.
At Schneider Electric, the safety of our customers and products is our highest priority. We develop and manufacture our products to the highest safety standards in accordance with regulatory and industry guidelines. Our UPS products are compliant to these standards, ensuring they operate in a safe manner including conducting abnormal tests where components are intentionally faulted.
Our UPS units comply with industry safety standards including UL 1778, CSA 22.2 No. 107.3 in North America and IEC 62040-1 which references to generic standards CSA-C22.2 No. 60950-1 /UL 60950-1or IEC 60950-1 / IEC 62477-1.
We recommend that customers immediately install available firmware updates provided below, which include remediations to reduce the risk of successful exploitation of these vulnerabilities. In addition, customers should also immediately ensure they have implemented cybersecurity best practices across their operations to protect themselves from exploitation of these vulnerabilities. Where appropriate, this includes locating their systems and remotely accessible devices behind firewalls; installing physical controls to prevent unauthorized access; preventing mission-critical systems and devices from being accessed from outside networks. More information on recommended security practices can be found in the General Security Recommendations section below.
Please subscribe to the Schneider Electric security notification service to be informed of updates to this notification https://www.schneider-electric.com/en/work/support/cybersecurity/security-notifications.jsp
For additional information and support, please contact your Schneider Electric sales or service representative or Schneider Electric’s Customer Care Center.
November 2022 Update: SURTD series was removed from the affected products table after a further investigation concluded that it was not affected by CVE-2022-0715. SRTL series was added to the available remediation section. In addition, SMC/SMX/SMT series was added to the available remediation section and SRC series moved to separate remediation sections.
A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled.
9 (Critical)
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Schneider Electric SmartConnect Family SMT Series ID=1015 <=UPS 04.5
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1015
|
<=UPS 04.5 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMC Series ID=1018 <=UPS 04.2
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMC Series / ID=1018
|
<=UPS 04.2 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMTL Series ID=1026 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMTL Series / ID=1026
|
<=UPS 14.9 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMT Series ID=1031 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1031
|
<=UPS 14.9 | ||
|
Schneider Electric SmartConnect Family SCL Series ID=1030 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SCL Series / ID=1030
|
<=UPS 14.9 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMX Series ID=1031 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMX Series / ID=1031
|
<=UPS 14.9 |
Vendor Fix
Vendor Fix
|
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Schneider Electric SmartConnect Family SMT Series ID=1015 UPS 04.6
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1015
|
UPS 04.6 | ||
|
Schneider Electric SmartConnect Family SMC Series ID=1018 UPS 04.3
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMC Series / ID=1018
|
UPS 04.3 | ||
|
Schneider Electric SmartConnect Family SMTL Series ID=1026 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMTL Series / ID=1026
|
UPS 15.0 | ||
|
Schneider Electric SmartConnect Family SMT Series ID=1031 UPS 04.6
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1031
|
UPS 04.6 | ||
|
Schneider Electric SmartConnect Family SCL Series ID=1030 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SCL Series / ID=1030
|
UPS 15.0 | ||
|
Schneider Electric SmartConnect Family SMX Series ID=1031 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMX Series / ID=1031
|
UPS 15.0 |
A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection is sent.
9 (Critical)
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Schneider Electric SmartConnect Family SMT Series ID=1015 <=UPS 04.5
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1015
|
<=UPS 04.5 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMC Series ID=1018 <=UPS 04.2
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMC Series / ID=1018
|
<=UPS 04.2 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMTL Series ID=1026 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMTL Series / ID=1026
|
<=UPS 14.9 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMT Series ID=1031 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1031
|
<=UPS 14.9 | ||
|
Schneider Electric SmartConnect Family SCL Series ID=1030 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SCL Series / ID=1030
|
<=UPS 14.9 |
Vendor Fix
Vendor Fix
|
|
|
Schneider Electric SmartConnect Family SMX Series ID=1031 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMX Series / ID=1031
|
<=UPS 14.9 |
Vendor Fix
Vendor Fix
|
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Schneider Electric SmartConnect Family SMT Series ID=1015 UPS 04.6
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1015
|
UPS 04.6 | ||
|
Schneider Electric SmartConnect Family SMC Series ID=1018 UPS 04.3
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMC Series / ID=1018
|
UPS 04.3 | ||
|
Schneider Electric SmartConnect Family SMTL Series ID=1026 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMTL Series / ID=1026
|
UPS 15.0 | ||
|
Schneider Electric SmartConnect Family SMT Series ID=1031 UPS 04.6
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1031
|
UPS 04.6 | ||
|
Schneider Electric SmartConnect Family SCL Series ID=1030 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SCL Series / ID=1030
|
UPS 15.0 | ||
|
Schneider Electric SmartConnect Family SMX Series ID=1031 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMX Series / ID=1031
|
UPS 15.0 |
A CWE-287: Improper Authentication vulnerability exists that could cause an attacker to arbitrarily change the behavior of the UPS if a key is leaked and used to upload malicious firmware.
8.9 (High)
8.9 (High)
Affected products
Known affected
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Schneider Electric Smart-UPS Family SMT Series ID=18 versions UPS 14.9 and prior
Schneider Electric / Smart-UPS Family / SMT Series / ID=18
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMX Series ID=23 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMX Series / ID=23
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMX Series ID=1023 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMX Series / ID=1023
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMX Series ID=1003 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMX Series / ID=1003
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1010 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1010
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1019 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1019
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1025 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1025
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1020 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1020
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1021 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1021
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1001 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1001
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1013 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1013
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1002 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1002
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRT Series ID=1014 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRT Series / ID=1014
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SRTL Series SMT Series ID=1024 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SRTL Series / ID=1024
|
SRTL1000RMXLISRTL1000RMXLI-NCSRTL1500RMXLISRTL1500RMXLI-NCSRTL2200RMXLISRTL2200RMXLI-NCSRTL3000RMXLISRTL3000RMXLI-NC
|
<=UPS 14.9 |
Mitigation
|
|
Schneider Electric Smart-UPS Family SRC Series ID=1004 <=UPS 13.9
Schneider Electric / Smart-UPS Family / SRC Series / ID=1004
|
<=UPS 13.9 |
No Fix Planned
|
|
|
Schneider Electric Smart-UPS Family SRC Series ID=1011 <=UPS 13.9
Schneider Electric / Smart-UPS Family / SRC Series / ID=1011
|
<=UPS 13.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family XU Series ID=1017 <=UPS 02.6
Schneider Electric / Smart-UPS Family / XU Series / ID=1017
|
<=UPS 02.6 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family XU Series ID=1033 <=UPS 00.3
Schneider Electric / Smart-UPS Family / XU Series / ID=1033
|
<=UPS 00.3 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family XP Series ID=1016 <=UPS 02.3
Schneider Electric / Smart-UPS Family / XP Series / ID=1016
|
<=UPS 02.3 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family CHS2 Series ID=5008 <=UPS 14.9
Schneider Electric / Smart-UPS Family / CHS2 Series / ID=5008
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMT Series ID=1031 verssions UPS 14.9 and prior
Schneider Electric / Smart-UPS Family / SMT Series / ID=1031
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric SmartConnect Family SMT Series ID=1015 <=UPS 04.5
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1015
|
<=UPS 04.5 |
Mitigation
Mitigation
|
|
|
Schneider Electric SmartConnect Family SMT Series ID=1015 UPS 04.6
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1015
|
UPS 04.6 |
Mitigation
|
|
|
Schneider Electric SmartConnect Family SMC Series ID=1018 <=UPS 04.2
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMC Series / ID=1018
|
<=UPS 04.2 |
Mitigation
|
|
|
Schneider Electric SmartConnect Family SMTL Series ID=1026 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMTL Series / ID=1026
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric SmartConnect Family SMT Series ID=1031 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1031
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMC Series ID=1005 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMC Series / ID=1005
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric SmartConnect Family SCL Series ID=1030 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SCL Series / ID=1030
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric SmartConnect Family SCL Series ID=1030 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SCL Series / ID=1030
|
UPS 15.0 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMT Series ID = 1039 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMT Series / ID = 1039
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMC Series ID = 1008 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMC Series / ID = 1008
|
<=UPS 14.9 |
Mitigation
Mitigation
No Fix Planned
|
|
|
Schneider Electric SmartConnect Family SMX Series ID=1031 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMX Series / ID=1031
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMC Series ID=1007 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMC Series / ID=1007
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMC Series ID=1000 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMC Series / ID=1000
|
<=UPS 14.9 |
Mitigation
No Fix Planned
|
|
|
Schneider Electric Smart-UPS Family SMX Series ID=10/11 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMX Series / ID=10/11
|
<=UPS 14.9 |
Mitigation
No Fix Planned
|
|
|
Schneider Electric Smart-UPS Family SMX Series ID=1012 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMX Series / ID=1012
|
<=UPS 14.9 |
Mitigation
No Fix Planned
|
|
|
Schneider Electric Smart-UPS Family SMX Series ID=1031 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMX Series / ID=1031
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SCL Series ID=1036 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SCL Series / ID=1036
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SCL Series ID=1029 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SCL Series / ID=1029
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SCL Series ID=1037 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SCL Series / ID=1037
|
<=UPS 14.9 |
Mitigation
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMX Series ID=20 <=UPS 14.9
Schneider Electric / Smart-UPS Family / SMX Series / ID=20
|
<=UPS 14.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMT Series ID= 14/17 versions UPS 14.9 and prior
Schneider Electric / Smart-UPS Family / SMT Series / ID= 14/17
|
<=UPS 14.9 |
No Fix Planned
|
|
|
Schneider Electric Smart-UPS Family SRC Series ID=1006 <=UPS 13.9
Schneider Electric / Smart-UPS Family / SRC Series / ID=1006
|
<=UPS 13.9 |
Mitigation
|
|
|
Schneider Electric Smart-UPS Family SMT Series ID=1040 versions UPS 14.9 and prior
Schneider Electric / Smart-UPS Family / SMT Series / ID=1040
|
<=UPS 14.9 |
Mitigation
|
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Schneider Electric SmartConnect Family SMT Series ID=1015 UPS 04.6
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1015
|
UPS 04.6 |
Mitigation
|
|
|
Schneider Electric SmartConnect Family SMC Series ID=1018 UPS 04.3
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMC Series / ID=1018
|
UPS 04.3 | ||
|
Schneider Electric SmartConnect Family SMTL Series ID=1026 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMTL Series / ID=1026
|
UPS 15.0 | ||
|
Schneider Electric SmartConnect Family SMT Series ID=1031 UPS 04.6
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMT Series / ID=1031
|
UPS 04.6 | ||
|
Schneider Electric SmartConnect Family SCL Series ID=1030 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SCL Series / ID=1030
|
UPS 15.0 |
Mitigation
|
|
|
Schneider Electric SmartConnect Family SMX Series ID=1031 UPS 15.0
Schneider Electric / Smart-UPS Family / SmartConnect Family / SMX Series / ID=1031
|
UPS 15.0 |
References
3 references
Acknowledgments
Armis
Gal Levy
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "We strongly recommend the following industry cybersecurity best practices.\n\nhttps://www.se.com/us/en/download/document/7EN52-0390/\n* Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network.\n* Install physical controls so no unauthorized personnel can access your industrial control and safety systems, components, peripheral equipment, and networks.\n* Place all controllers in locked cabinets and never leave them in the \u201cProgram\u201d mode.\n* Never connect programming software to any network other than the network intended for that device.\n* Scan all methods of mobile data exchange with the isolated network such as CDs, USB drives, etc. before use in the terminals or any node connected to these networks.\n* Never allow mobile devices that have connected to any other network besides the intended network to connect to the safety or control networks without proper sanitation.\n* Minimize network exposure for all control system devices and systems and ensure that they are not accessible from the Internet.\n* When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Recognize that VPNs may have vulnerabilities and should be updated to the most current version available. Also, understand that VPNs are only as secure as the connected devices.\nFor more information refer to the Schneider Electric Recommended Cybersecurity Best Practices document. \n",
"title": "General Security Recommendations"
},
{
"category": "general",
"text": "This document provides an overview of the identified vulnerability or vulnerabilities and actions required to mitigate. For more details and assistance on how to protect your installation, contact your local Schneider Electric representative or Schneider Electric Industrial Cybersecurity Services: https://www.se.com/ww/en/work/solutions/cybersecurity/. These organizations will be fully aware of this situation and can support you through the process.\nFor further information related to cybersecurity in Schneider Electric\u2019s products, visit the company\u2019s cybersecurity support portal page: https://www.se.com/ww/en/work/support/cybersecurity/overview.jsp",
"title": "For More Information"
},
{
"category": "legal_disclaimer",
"text": "THIS NOTIFICATION DOCUMENT, THE INFORMATION CONTAINED HEREIN, AND ANY MATERIALS LINKED FROM IT (COLLECTIVELY, THIS \u201cNOTIFICATION\u201d) ARE INTENDED TO HELP PROVIDE AN OVERVIEW OF THE IDENTIFIED SITUATION AND SUGGESTED MITIGATION ACTIONS, REMEDIATION, FIX, AND/OR GENERAL SECURITY RECOMMENDATIONS AND IS PROVIDED ON AN \u201cAS-IS\u201d BASIS WITHOUT WARRANTY OR GUARANTEE OF ANY KIND. SCHNEIDER ELECTRIC DISCLAIMS ALL WARRANTIES RELATING TO THIS NOTIFICATION, EITHER EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SCHNEIDER ELECTRIC MAKES NO WARRANTY THAT THE NOTIFICATION WILL RESOLVE THE IDENTIFIED SITUATION. IN NO EVENT SHALL SCHNEIDER ELECTRIC BE LIABLE FOR ANY DAMAGES OR LOSSES WHATSOEVER IN CONNECTION WITH THIS NOTIFICATION, INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF SCHNEIDER ELECTRIC HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOUR USE OF THIS NOTIFICATION IS AT YOUR OWN RISK, AND YOU ARE SOLELY LIABLE FOR ANY DAMAGES TO YOUR SYSTEMS OR ASSETS OR OTHER LOSSES THAT MAY RESULT FROM YOUR USE OF THIS NOTIFICATION. SCHNEIDER ELECTRIC RESERVES THE RIGHT TO UPDATE OR CHANGE THIS NOTIFICATION AT ANY TIME AND IN ITS SOLE DISCRETION",
"title": "LEGAL DISCLAIMER"
},
{
"category": "general",
"text": "At Schneider, we believe access to energy and digital is a basic human right. We empower all to do more with less, ensuring Life Is On everywhere, for everyone, at every moment.\n\nWe provide energy and automation digital solutions for efficiency and sustainability. We combine world-leading energy technologies, real-time automation, software and services into integrated solutions for Homes, Buildings, Data Centers, Infrastructure and Industries.\n\nWe are committed to unleash the infinite possibilities of an open, global, innovative community that is passionate with our Meaningful Purpose, Inclusive and Empowered values.\n\nwww.se.com ",
"title": "About Schneider Electric"
},
{
"category": "summary",
"text": "Schneider Electric is aware of the vulnerabilities associated with APC Smart-UPS uninterruptable power supply devices which, if compromised, may allow for potential unauthorized access and control of the device. Upon learning of these vulnerabilities, we worked diligently to develop remediations and mitigations, and disclose in a timely, responsible manner so that our customers and end-users can better protect their people, assets, and operations.\nAt Schneider Electric, the safety of our customers and products is our highest priority. We develop and manufacture our products to the highest safety standards in accordance with regulatory and industry guidelines. Our UPS products are compliant to these standards, ensuring they operate in a safe manner including conducting abnormal tests where components are intentionally faulted.\nOur UPS units comply with industry safety standards including UL 1778, CSA 22.2 No. 107.3 in North America and IEC 62040-1 which references to generic standards CSA-C22.2 No. 60950-1 /UL 60950-1or IEC 60950-1 / IEC 62477-1.\nWe recommend that customers immediately install available firmware updates provided below, which include remediations to reduce the risk of successful exploitation of these vulnerabilities. In addition, customers should also immediately ensure they have implemented cybersecurity best practices across their operations to protect themselves from exploitation of these vulnerabilities. Where appropriate, this includes locating their systems and remotely accessible devices behind firewalls; installing physical controls to prevent unauthorized access; preventing mission-critical systems and devices from being accessed from outside networks. More information on recommended security practices can be found in the General Security Recommendations section below.\nPlease subscribe to the Schneider Electric security notification service to be informed of updates to this notification https://www.schneider-electric.com/en/work/support/cybersecurity/security-notifications.jsp\nFor additional information and support, please contact your Schneider Electric sales or service representative or Schneider Electric\u2019s Customer Care Center.\nNovember 2022 Update: SURTD series was removed from the affected products table after a further investigation concluded that it was not affected by CVE-2022-0715. SRTL series was added to the available remediation section. In addition, SMC/SMX/SMT series was added to the available remediation section and SRC series moved to separate remediation sections.",
"title": "Overview"
}
],
"publisher": {
"category": "vendor",
"contact_details": "cybersecurity@se.com",
"name": "Schneider Electric CPCERT",
"namespace": "https://www.se.com/ww/en/work/support/cybersecurity/security-notifications.jsp"
},
"references": [
{
"category": "self",
"summary": "APC Smart-UPS SMT, SMC, SMX, SCL, SRC, XU, SMTL, SRT, and select SRTL Series - SEVD-2022-067-02 CSAF Version",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-067-02\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=sevd-2022-067-02.json"
},
{
"category": "self",
"summary": "APC Smart-UPS SMT, SMC, SMX, SCL, SRC, XU, SMTL, SRT, and select SRTL Series - SEVD-2022-067-02 PDF Version",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-067-02\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2022-067-02_APC-Smart-UPS_Security_Notification.pdf"
},
{
"category": "external",
"summary": "Recommended Cybersecurity Best Practices",
"url": "https://www.se.com/us/en/download/document/7EN52-0390/"
}
],
"title": " APC Smart-UPS SMT, SMC, SMX, SCL, SRC, XU, XP, CSH2, SURTD, SMTL, SRT, and select SRTL Series",
"tracking": {
"current_release_date": "2022-06-16T18:30:00.000Z",
"generator": {
"date": "2022-11-17T15:47:42.500Z",
"engine": {
"name": "Secvisogram",
"version": "2.0.0"
}
},
"id": "SEVD-2022-067-02",
"initial_release_date": "2022-03-08T06:30:00.000Z",
"revision_history": [
{
"date": "2022-03-08T06:30:00.000Z",
"number": "1",
"summary": "Original Release"
},
{
"date": "2022-03-24T06:30:00.000Z",
"number": "2",
"summary": "Added SRTL series to affected products. Removed Smart-UPS series from available remediations section as only SmartConnect currently has available remediations."
},
{
"date": "2022-05-10T00:00:00.00Z",
"number": "3",
"summary": "Added SRC \u0026 XU series to affected products. Added SmartConnect SMTL, SCL, and SMX Series in available remediations section"
},
{
"date": "2022-06-14T18:30:00.000Z",
"number": "4",
"summary": "Added XP, SURTD, CHS2 series to affected products section and added Smart-UPS SCL and SRT Series in the available remediations section. Various changes were made to improve clarity."
},
{
"date": "2022-07-12T18:30:00.000Z",
"number": "5",
"summary": "SMT Series ID=1039: UPS 14.9 and prior and SMC Series ID=1041: UPS 14.9 and prior added to the Affected Products and Versions section (page 2). Added SRC and XU to the available remediations section (page 6). Various changes were made to improve clarity"
},
{
"date": "2022-08-19T06:30:00.000Z",
"number": "6",
"summary": "In the Affected Products and Versions section, new series IDs were added to SMT, SMC, and SMX. Added CSH2 to the available remediations sections. Added mitigations for products with the specified IDs that have been phased out and will not have firmware remediation."
},
{
"date": "2022-11-22T06:30:00.000Z",
"number": "7",
"summary": "SURTD series was removed from the affected products table after a further investigation concluded that it was not affected by CVE-2022-0715. SRTL series was added to the available remediation section. In addition, SMC/SMX/SMT series was added to the available remediation section and SRC series moved to separate remediation sections ."
}
],
"status": "final",
"version": "7"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMT Series ID= 14/17 versions UPS 14.9 and prior",
"product_id": "48"
}
}
],
"category": "product_name",
"name": "ID= 14/17"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMT Series ID= 20 versions UPS 14.9 and prior",
"product_id": "49"
}
}
],
"category": "product_name",
"name": "ID= 20"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMT Series ID= 1041 verions UPS 14.9 and prior",
"product_id": "50"
}
}
],
"category": "product_name",
"name": "ID= 1041"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMT Series ID=18 versions UPS 14.9 and prior",
"product_id": "1"
}
}
],
"category": "product_name",
"name": "ID=18"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMT Series ID=1040 versions UPS 14.9 and prior",
"product_id": "2"
}
}
],
"category": "product_name",
"name": "ID=1040"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMT Series ID=1031 verssions UPS 14.9 and prior",
"product_id": "3"
}
}
],
"category": "product_name",
"name": "ID=1031"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMT Series ID = 1039 \u003c=UPS 14.9",
"product_id": "42"
}
}
],
"category": "product_name",
"name": "ID = 1039"
}
],
"category": "product_family",
"name": "SMT Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMC Series ID=1000 \u003c=UPS 14.9",
"product_id": "51"
}
}
],
"category": "product_name",
"name": "ID=1000"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMC Series ID=1005 \u003c=UPS 14.9",
"product_id": "4"
}
}
],
"category": "product_name",
"name": "ID=1005"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMC Series ID=1007 \u003c=UPS 14.9",
"product_id": "5"
}
}
],
"category": "product_name",
"name": "ID=1007"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMC Series ID = 1008 \u003c=UPS 14.9",
"product_id": "43"
}
}
],
"category": "product_name",
"name": "ID = 1008"
}
],
"category": "product_family",
"name": "SMC Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SCL Series ID=1036 \u003c=UPS 14.9",
"product_id": "6"
}
}
],
"category": "product_name",
"name": "ID=1036"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SCL Series ID=1029 \u003c=UPS 14.9",
"product_id": "7"
}
}
],
"category": "product_name",
"name": "ID=1029"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SCL Series ID=1037 \u003c=UPS 14.9",
"product_id": "8"
}
}
],
"category": "product_name",
"name": "ID=1037"
}
],
"category": "product_family",
"name": "SCL Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMX Series ID=10/11 \u003c=UPS 14.9",
"product_id": "52"
}
}
],
"category": "product_name",
"name": "ID=10/11"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMX Series ID=1012 \u003c=UPS 14.9",
"product_id": "53"
}
}
],
"category": "product_name",
"name": "ID=1012"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMX Series ID=20 \u003c=UPS 14.9",
"product_id": "9"
}
}
],
"category": "product_name",
"name": "ID=20"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMX Series ID=23 \u003c=UPS 14.9",
"product_id": "10"
}
}
],
"category": "product_name",
"name": "ID=23"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMX Series ID=1023 \u003c=UPS 14.9",
"product_id": "11"
}
}
],
"category": "product_name",
"name": "ID=1023"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMX Series ID=1003 \u003c=UPS 14.9",
"product_id": "12"
}
}
],
"category": "product_name",
"name": "ID=1003"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SMX Series ID=1031 \u003c=UPS 14.9",
"product_id": "54"
}
}
],
"category": "product_name",
"name": "ID=1031"
}
],
"category": "product_family",
"name": "SMX Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1010 \u003c=UPS 14.9",
"product_id": "13"
}
}
],
"category": "product_name",
"name": "ID=1010"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1019 \u003c=UPS 14.9",
"product_id": "14"
}
}
],
"category": "product_name",
"name": "ID=1019"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1025 \u003c=UPS 14.9",
"product_id": "15"
}
}
],
"category": "product_name",
"name": "ID=1025"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1020 \u003c=UPS 14.9",
"product_id": "16"
}
}
],
"category": "product_name",
"name": "ID=1020"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1021 \u003c=UPS 14.9",
"product_id": "17"
}
}
],
"category": "product_name",
"name": "ID=1021"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1001 \u003c=UPS 14.9",
"product_id": "18"
}
}
],
"category": "product_name",
"name": "ID=1001"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1013 \u003c=UPS 14.9",
"product_id": "19"
}
}
],
"category": "product_name",
"name": "ID=1013"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1002 \u003c=UPS 14.9",
"product_id": "20"
}
}
],
"category": "product_name",
"name": "ID=1002"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRT Series ID=1014 \u003c=UPS 14.9",
"product_id": "21"
}
}
],
"category": "product_name",
"name": "ID=1014"
}
],
"category": "product_family",
"name": "SRT Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRTL Series SMT Series ID=1024 \u003c=UPS 14.9",
"product_id": "22",
"product_identification_helper": {
"model_numbers": [
"SRTL1000RMXLI",
"SRTL1000RMXLI-NC",
"SRTL1500RMXLI",
"SRTL1500RMXLI-NC",
"SRTL2200RMXLI",
"SRTL2200RMXLI-NC",
"SRTL3000RMXLI",
"SRTL3000RMXLI-NC"
]
}
}
}
],
"category": "product_name",
"name": "ID=1024"
}
],
"category": "product_family",
"name": "SRTL Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 13.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRC Series ID=1004 \u003c=UPS 13.9",
"product_id": "23"
}
}
],
"category": "product_name",
"name": "ID=1004"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 13.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRC Series ID=1006 \u003c=UPS 13.9",
"product_id": "24"
}
}
],
"category": "product_name",
"name": "ID=1006"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 13.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SRC Series ID=1011 \u003c=UPS 13.9",
"product_id": "25"
}
}
],
"category": "product_name",
"name": "ID=1011"
}
],
"category": "product_family",
"name": "SRC Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 02.6",
"product": {
"name": "Schneider Electric Smart-UPS Family XU Series ID=1017 \u003c=UPS 02.6",
"product_id": "26"
}
}
],
"category": "product_name",
"name": "ID=1017"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family XU Series ID=1017 \u003c=UPS 02.6",
"product_id": "55"
}
}
],
"category": "product_name",
"name": "ID=1025"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 00.3",
"product": {
"name": "Schneider Electric Smart-UPS Family XU Series ID=1033 \u003c=UPS 00.3",
"product_id": "27"
}
}
],
"category": "product_name",
"name": "ID=1033"
}
],
"category": "product_family",
"name": "XU Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 02.3",
"product": {
"name": "Schneider Electric Smart-UPS Family XP Series ID=1016 \u003c=UPS 02.3",
"product_id": "28"
}
}
],
"category": "product_name",
"name": "ID=1016"
}
],
"category": "product_family",
"name": "XP Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family CHS2 Series ID=5008 \u003c=UPS 14.9",
"product_id": "29"
}
}
],
"category": "product_name",
"name": "ID=5008"
}
],
"category": "product_family",
"name": "CHS2 Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SURTD Series ID=5 \u003c=UPS 02.6",
"product_id": "30"
}
}
],
"category": "product_name",
"name": "ID=5"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric Smart-UPS Family SURTD Series ID=9 \u003c=UPS 00.3",
"product_id": "31"
}
}
],
"category": "product_name",
"name": "ID=9"
}
],
"category": "product_family",
"name": "SURTD Series"
},
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 04.5",
"product": {
"name": "Schneider Electric SmartConnect Family SMT Series ID=1015 \u003c=UPS 04.5",
"product_id": "32"
}
},
{
"category": "product_version",
"name": "UPS 04.6",
"product": {
"name": "Schneider Electric SmartConnect Family SMT Series ID=1015 UPS 04.6",
"product_id": "33"
}
}
],
"category": "product_name",
"name": "ID=1015"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric SmartConnect Family SMT Series ID=1031 \u003c=UPS 14.9",
"product_id": "38"
}
},
{
"category": "product_version",
"name": "UPS 04.6",
"product": {
"name": "Schneider Electric SmartConnect Family SMT Series ID=1031 UPS 04.6",
"product_id": "39"
}
}
],
"category": "product_name",
"name": "ID=1031"
}
],
"category": "product_family",
"name": "SMT Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 04.2",
"product": {
"name": "Schneider Electric SmartConnect Family SMC Series ID=1018 \u003c=UPS 04.2",
"product_id": "34"
}
},
{
"category": "product_version",
"name": "UPS 04.3",
"product": {
"name": "Schneider Electric SmartConnect Family SMC Series ID=1018 UPS 04.3",
"product_id": "35"
}
}
],
"category": "product_name",
"name": "ID=1018"
}
],
"category": "product_family",
"name": "SMC Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric SmartConnect Family SMTL Series ID=1026 \u003c=UPS 14.9",
"product_id": "36"
}
},
{
"category": "product_version",
"name": "UPS 15.0",
"product": {
"name": "Schneider Electric SmartConnect Family SMTL Series ID=1026 UPS 15.0",
"product_id": "37"
}
}
],
"category": "product_name",
"name": "ID=1026"
}
],
"category": "product_family",
"name": "SMTL Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric SmartConnect Family SCL Series ID=1030 \u003c=UPS 14.9",
"product_id": "40"
}
},
{
"category": "product_version",
"name": "UPS 15.0",
"product": {
"name": "Schneider Electric SmartConnect Family SCL Series ID=1030 UPS 15.0",
"product_id": "41"
}
}
],
"category": "product_name",
"name": "ID=1030"
}
],
"category": "product_family",
"name": "SCL Series"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=UPS 14.9",
"product": {
"name": "Schneider Electric SmartConnect Family SMX Series ID=1031 \u003c=UPS 14.9",
"product_id": "46"
}
},
{
"category": "product_version",
"name": "UPS 15.0",
"product": {
"name": "Schneider Electric SmartConnect Family SMX Series ID=1031 UPS 15.0",
"product_id": "47"
}
}
],
"category": "product_name",
"name": "ID=1031"
}
],
"category": "product_family",
"name": "SMX Series"
}
],
"category": "product_family",
"name": "SmartConnect Family"
}
],
"category": "product_family",
"name": "Smart-UPS Family"
}
],
"category": "vendor",
"name": "Schneider Electric"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Gal Levy"
],
"organization": "Armis"
}
],
"cve": "CVE-2022-22805",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "description",
"text": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"33",
"35",
"37",
"39",
"41",
"47"
],
"known_affected": [
"32",
"34",
"36",
"38",
"40",
"46"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Firmware Version UPS 04.6 (SMT series), Version UPS 15.0 (SMTL, SCL, SMX series) and Version UPS 04.3 (SMC series) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation, for the Smart-UPS SMT and SMC series and a fix for CVE-2022-22805 and CVE-2022-22806 for the SmartConnect UPS SMT, SMTL, SCL, SMX series and SMC series.There are three ways to apply this remediation: 1. For units connected to the SmartConnect Portal, new firmware will become available automatically. Follow prompts via the portal or display to install new firmware. 2. For units not connected to the SmartConnect Portal, use the Firmware Upgrade Wizard to install the new firmware. 3. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS. When downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.Note: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature. To verify new firmware version post-installation: Go to the About screen on local display, the SmartConnect portal, or on the NMC and confirm that the UPS firmware Revision is UPS 04.6 (SMT series) and UPS 04.3 (SMC series)In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit. ",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"32",
"34",
"42",
"43",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"36",
"40",
"46"
]
},
{
"category": "vendor_fix",
"details": "Firmware Version UPS 04.6 (SMT series) and Version UPS 04.3 (SMC series) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation, for the Smart-UPS SMT and SMC series and a fix for CVE-2022-22805 and CVE-2022-22806 for the SmartConnect UPS SMT and SMC series.\nThere are three ways to apply this remediation:\n1. For units connected to the SmartConnect Portal, new firmware will become available automatically. Follow prompts via the portal or display to install new firmware.\n2. For units not connected to the SmartConnect Portal, use the Firmware Upgrade Wizard to install the new firmware.\n3. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS.\nWhen downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.\nNote: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature.\nTo verify new firmware version post-installation: Go to the About screen on local display, the SmartConnect portal, or on the NMC and confirm that the UPS firmware Revision is UPS 04.6 (SMT series) and UPS 04.3 (SMC series)\nIn addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit.",
"product_ids": [
"32",
"34"
]
},
{
"category": "vendor_fix",
"details": "Firmware Version UPS 15.0 includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation and a fix for CVE-2022-22805 and CVE-2022-22806 for the SmartConnect UPS SMTL, SCL and SMX series.\nThere are three ways to apply this remediation:\n1. For units connected to the SmartConnect Portal, new firmware will become available automatically. Follow prompts via the portal or display to install new firmware.\n2. For units not connected to the SmartConnect Portal, use the Firmware Upgrade Wizard to install the new firmware.\n3. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS.\nWhen downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.\nNote: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature.\nTo verify new firmware version post-installation: Go to the About screen on local display, the SmartConnect portal, or on the NMC and confirm that the UPS firmware Revision is UPS 15.0. In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit.",
"product_ids": [
"40",
"36",
"46"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"32",
"34",
"36",
"38",
"40",
"46"
]
}
],
"title": "CVE-2022-22805"
},
{
"acknowledgments": [
{
"names": [
"Gal Levy"
],
"organization": "Armis"
}
],
"cve": "CVE-2022-22806",
"cwe": {
"id": "CWE-294",
"name": "Authentication Bypass by Capture-replay"
},
"notes": [
{
"category": "description",
"text": "A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection is sent.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"33",
"35",
"37",
"39",
"41",
"47"
],
"known_affected": [
"32",
"34",
"36",
"38",
"40",
"46"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Firmware Version UPS 04.6 (SMT series), Version UPS 15.0 (SMTL, SCL, SMX series) and Version UPS 04.3 (SMC series) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation, for the Smart-UPS SMT and SMC series and a fix for CVE-2022-22805 and CVE-2022-22806 for the SmartConnect UPS SMT, SMTL, SCL, SMX series and SMC series.There are three ways to apply this remediation: 1. For units connected to the SmartConnect Portal, new firmware will become available automatically. Follow prompts via the portal or display to install new firmware. 2. For units not connected to the SmartConnect Portal, use the Firmware Upgrade Wizard to install the new firmware. 3. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS. When downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.Note: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature. To verify new firmware version post-installation: Go to the About screen on local display, the SmartConnect portal, or on the NMC and confirm that the UPS firmware Revision is UPS 04.6 (SMT series) and UPS 04.3 (SMC series)In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit. ",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"32",
"34",
"42",
"43",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"36",
"40",
"46"
]
},
{
"category": "vendor_fix",
"details": "Firmware Version UPS 04.6 (SMT series) and Version UPS 04.3 (SMC series) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation, for the Smart-UPS SMT and SMC series and a fix for CVE-2022-22805 and CVE-2022-22806 for the SmartConnect UPS SMT and SMC series.\nThere are three ways to apply this remediation:\n1. For units connected to the SmartConnect Portal, new firmware will become available automatically. Follow prompts via the portal or display to install new firmware.\n2. For units not connected to the SmartConnect Portal, use the Firmware Upgrade Wizard to install the new firmware.\n3. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS.\nWhen downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.\nNote: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature.\nTo verify new firmware version post-installation: Go to the About screen on local display, the SmartConnect portal, or on the NMC and confirm that the UPS firmware Revision is UPS 04.6 (SMT series) and UPS 04.3 (SMC series)\nIn addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit.",
"product_ids": [
"32",
"34"
]
},
{
"category": "vendor_fix",
"details": "Firmware Version UPS 15.0 includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation and a fix for CVE-2022-22805 and CVE-2022-22806 for the SmartConnect UPS SMTL, SCL and SMX series.\nThere are three ways to apply this remediation:\n1. For units connected to the SmartConnect Portal, new firmware will become available automatically. Follow prompts via the portal or display to install new firmware.\n2. For units not connected to the SmartConnect Portal, use the Firmware Upgrade Wizard to install the new firmware.\n3. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS.\nWhen downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.\nNote: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature.\nTo verify new firmware version post-installation: Go to the About screen on local display, the SmartConnect portal, or on the NMC and confirm that the UPS firmware Revision is UPS 15.0. In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit.",
"product_ids": [
"40",
"36",
"46"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"32",
"34",
"36",
"38",
"40",
"46"
]
}
],
"title": "CVE-2022-22806"
},
{
"acknowledgments": [
{
"names": [
"Gal Levy"
],
"organization": "Armis"
}
],
"cve": "CVE-2022-0715",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "description",
"text": "A CWE-287: Improper Authentication vulnerability exists that could cause an attacker to arbitrarily change the behavior of the UPS if a key is leaked and used to upload malicious firmware.",
"title": "CVE Description"
},
{
"category": "details",
"text": "For Connected Devices:\nCVSS v3.1 Base Score 8.9 | High | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H\nFor Non-Connected Devices:\nCVSS v3.1 Base Score 6.9 | Medium | CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:H",
"title": "CVE Details"
}
],
"product_status": {
"known_affected": [
"1",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"25",
"26",
"27",
"28",
"29",
"3",
"32",
"33",
"34",
"36",
"38",
"4",
"40",
"41",
"42",
"43",
"46",
"5",
"51",
"52",
"53",
"54",
"6",
"7",
"8",
"9",
"48",
"24",
"2"
],
"recommended": [
"33",
"35",
"37",
"39",
"41",
"47"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Firmware Version UPS 04.6 (SMT series), Version UPS 15.0 (SMTL, SCL, SMX series) and Version UPS 04.3 (SMC series) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation, for the Smart-UPS SMT and SMC series and a fix for CVE-2022-22805 and CVE-2022-22806 for the SmartConnect UPS SMT, SMTL, SCL, SMX series and SMC series.There are three ways to apply this remediation: 1. For units connected to the SmartConnect Portal, new firmware will become available automatically. Follow prompts via the portal or display to install new firmware. 2. For units not connected to the SmartConnect Portal, use the Firmware Upgrade Wizard to install the new firmware. 3. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS. When downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.Note: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature. To verify new firmware version post-installation: Go to the About screen on local display, the SmartConnect portal, or on the NMC and confirm that the UPS firmware Revision is UPS 04.6 (SMT series) and UPS 04.3 (SMC series)In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit. ",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"32",
"34",
"42",
"43",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"36",
"40",
"46"
]
},
{
"category": "mitigation",
"details": "Firmware Version UPS 15.0 (SRT, SRTL, CSH2, \u0026 XU series) and Firmware Version UPS 15.1 (SCL series) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation for the Smart-UPS SCL, SRTL, CSH2, XU, and SRT series.There are two ways to apply this remediation: 1. For all units, use the Firmware Upgrade Wizard t o install the new firmware. 2. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS. When downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.Note: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature. To verify new firmware version post-installation: Go to the About screen on local display, or on the NMC and confirm that the UPS firmware Revision is UPS 15.0. In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit. ",
"product_ids": [
"40",
"41",
"6",
"7",
"8",
"13",
"26",
"27",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"29"
]
},
{
"category": "mitigation",
"details": "Firmware Version UPS 15.0 (SRC) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation for the Smart-UPS SRC series.There are two ways to apply this remediation: 1. For all units, use the Firmware Upgrade Wizard to install the new firmware. 2. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS. When downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.Note: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature. To verify new firmware version post-installation: Go to the About screen on local display, or on the NMC and confirm that the UPS firmware Revision is UPS 15.0. In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit.",
"product_ids": [
"24",
"25"
]
},
{
"category": "mitigation",
"details": "Firmware Version UPS 15.0 (SMT, SMC, SMX, XP series) includes a partial remediation for CVE-2022-0715, which will reduce the risk of successful exploitation for the Smart-UPS SMT, SMC, SMX, XP series. There are two ways to apply this remediation: 1. For all units, use the Firmware Upgrade Wizard to install the new firmware. 2. For those devices which include a NMC, it can be used to remotely update the firmware of the UPS. When downloading updates, only download from the official Schneider Electric sources above and ensure that hashes are verified before installation.Note: After the firmware is installed, the unit will lose the capability to install future firmware via the NMC. All other methods of firmware update will continue to be available. A future firmware update will be released to re-enable this feature. To verify new firmware version post-installation: Go to the About screen on local display, or on the NMC and confirm that the UPS firmware Revision is UPS 15.0. In addition to the remediations above, customers should immediately apply the General Security Recommendations provided below to reduce the risk of exploit. ",
"product_ids": [
"32",
"33",
"38",
"51",
"4",
"5",
"43",
"52",
"53",
"1",
"10",
"11",
"12",
"54",
"28"
]
},
{
"category": "no_fix_planned",
"details": "UPS models from these series with the specified IDs have been phased out and firmware remediation is not available for them. To reduce the risk of exploit, customers should continue to follow the General Security Recommendations.To remediate the vulnerabilities, we recommend that you replace UPS models with the specified IDs with a newer version of a similar model. If you have questions about which model you should procure, please reach out to your account manager or refer to the UPS Selector and Product Substitution \u0026 Replacements tools at www.apc.com.",
"product_ids": [
"48",
"43",
"51",
"52",
"53",
"23"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.9,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"25",
"26",
"27",
"28",
"29",
"3",
"32",
"33",
"34",
"36",
"38",
"4",
"40",
"41",
"42",
"43",
"46",
"5",
"51",
"52",
"53",
"54",
"6",
"7",
"8",
"9",
"48",
"24",
"2"
]
},
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.9,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-0715"
}
]
}
VAR-202203-0237
Vulnerability from variot - Updated: 2024-02-13 22:34A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior). Schneider Electric The product contains a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Schneider Electric APC Smart-UPS SMC Series, etc. are all products of the French Schneider Electric (Schneider Electric). The Schneider Electric APC Smart-UPS SMC Series is an entry-level UPS for single server, low-power networking, and point-of-sale (POS) devices. Schneider Electric APC Smart-UPS SMT Series is a line interactive power protection for servers, point of sale, routers, switches, hubs and other network equipment. Schneider Electric APC Smart-UPS SMX Series is an intelligent and efficient network power protection
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202203-0237",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "scl series 1030 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "02.5"
},
{
"model": "smc series 1018 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "04.2"
},
{
"model": "scl series 1037 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "03.1"
},
{
"model": "scl series 1029 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "02.5"
},
{
"model": "smtl series 1026 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "02.9"
},
{
"model": "smt series 1015 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "04.5"
},
{
"model": "smx series 1031 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "03.1"
},
{
"model": "scl series 1036 ups",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "02.5"
},
{
"model": "scl \u30b7\u30ea\u30fc\u30ba 1036 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "smc \u30b7\u30ea\u30fc\u30ba 1018 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "scl \u30b7\u30ea\u30fc\u30ba 1037 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "smt \u30b7\u30ea\u30fc\u30ba 1015 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "scl \u30b7\u30ea\u30fc\u30ba 1029 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "smtl \u30b7\u30ea\u30fc\u30ba 1026 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "scl \u30b7\u30ea\u30fc\u30ba 1030 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "smx \u30b7\u30ea\u30fc\u30ba 1031 ups",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "electric smt series id=1015 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "04.5"
},
{
"model": "electric smc series id=1018 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "04.2"
},
{
"model": "electric smtl series id=1026 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "02.9"
},
{
"model": "electric scl series id=1030 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "02.5"
},
{
"model": "electric scl series id=1036 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "02.5"
},
{
"model": "electric scl series id=1029 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "02.5"
},
{
"model": "electric scl series id=1037 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "03.1"
},
{
"model": "electric smx series id=1031 \u003c=ups",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "03.1"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smt_series_1015_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "04.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smt_series_1015_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smc_series_1018_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "04.2",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smc_series_1018_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smtl_series_1026_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.9",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smtl_series_1026_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1029_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1029_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1030_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1030_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1036_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "02.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1036_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:scl_series_1037_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "03.1",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:scl_series_1037_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:schneider-electric:smx_series_1031_ups_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "03.1",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:schneider-electric:smx_series_1031_ups:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"cve": "CVE-2022-22805",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 7.5,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2022-22805",
"impactScore": null,
"integrityImpact": "Partial",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.6,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 4.9,
"id": "CNVD-2022-18773",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 9.8,
"baseSeverity": "Critical",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2022-22805",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2022-22805",
"trust": 1.8,
"value": "CRITICAL"
},
{
"author": "CNVD",
"id": "CNVD-2022-18773",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-202203-812",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULMON",
"id": "CVE-2022-22805",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"db": "VULMON",
"id": "CVE-2022-22805"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"db": "CNNVD",
"id": "CNNVD-202203-812"
},
{
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior). Schneider Electric The product contains a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Schneider Electric APC Smart-UPS SMC Series, etc. are all products of the French Schneider Electric (Schneider Electric). The Schneider Electric APC Smart-UPS SMC Series is an entry-level UPS for single server, low-power networking, and point-of-sale (POS) devices. Schneider Electric APC Smart-UPS SMT Series is a line interactive power protection for servers, point of sale, routers, switches, hubs and other network equipment. Schneider Electric APC Smart-UPS SMX Series is an intelligent and efficient network power protection",
"sources": [
{
"db": "NVD",
"id": "CVE-2022-22805"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"db": "VULMON",
"id": "CVE-2022-22805"
}
],
"trust": 2.25
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2022-22805",
"trust": 3.9
},
{
"db": "SCHNEIDER",
"id": "SEVD-2022-067-02",
"trust": 2.5
},
{
"db": "JVNDB",
"id": "JVNDB-2022-006904",
"trust": 0.8
},
{
"db": "CNVD",
"id": "CNVD-2022-18773",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2022030912",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202203-812",
"trust": 0.6
},
{
"db": "VULMON",
"id": "CVE-2022-22805",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"db": "VULMON",
"id": "CVE-2022-22805"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"db": "CNNVD",
"id": "CNNVD-202203-812"
},
{
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"id": "VAR-202203-0237",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
}
],
"trust": 1.6
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
}
]
},
"last_update_date": "2024-02-13T22:34:21.296000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Patch for Buffer Overflow Vulnerabilities in Multiple Schneider Electric Products",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/325171"
},
{
"title": "Schneider Electric Repair measures for buffer errors and vulnerabilities in many products",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=185424"
},
{
"title": "CVE-2022-XXXX",
"trust": 0.1,
"url": "https://github.com/alphabugx/cve-2022-23305 "
},
{
"title": "CVE-2022-XXXX",
"trust": 0.1,
"url": "https://github.com/alphabugx/cve-2022-rce "
},
{
"title": "The Register",
"trust": 0.1,
"url": "https://www.theregister.co.uk/2022/03/09/tlstorm_apc_ups_critical_zero_days/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"db": "VULMON",
"id": "CVE-2022-22805"
},
{
"db": "CNNVD",
"id": "CNNVD-202203-812"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-120",
"trust": 1.0
},
{
"problemtype": "Classic buffer overflow (CWE-120) [ others ]",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.5,
"url": "https://www.se.com/ww/en/download/document/sevd-2022-067-02/"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2022-22805"
},
{
"trust": 0.6,
"url": "https://download.schneider-electric.com/files?p_doc_ref=sevd-2022-067-02"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2022030912"
},
{
"trust": 0.6,
"url": "https://cxsecurity.com/cveshow/cve-2022-22805/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/120.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://www.theregister.co.uk/2022/03/09/tlstorm_apc_ups_critical_zero_days/"
},
{
"trust": 0.1,
"url": "https://github.com/alphabugx/cve-2022-23305"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"db": "VULMON",
"id": "CVE-2022-22805"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"db": "CNNVD",
"id": "CNNVD-202203-812"
},
{
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"db": "VULMON",
"id": "CVE-2022-22805"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"db": "CNNVD",
"id": "CNNVD-202203-812"
},
{
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2022-03-12T00:00:00",
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"date": "2022-03-09T00:00:00",
"db": "VULMON",
"id": "CVE-2022-22805"
},
{
"date": "2023-07-10T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"date": "2022-03-09T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202203-812"
},
{
"date": "2022-03-09T20:15:08.460000",
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2022-03-12T00:00:00",
"db": "CNVD",
"id": "CNVD-2022-18773"
},
{
"date": "2022-05-12T00:00:00",
"db": "VULMON",
"id": "CVE-2022-22805"
},
{
"date": "2023-07-10T08:21:00",
"db": "JVNDB",
"id": "JVNDB-2022-006904"
},
{
"date": "2022-04-14T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202203-812"
},
{
"date": "2022-05-12T20:42:10.707000",
"db": "NVD",
"id": "CVE-2022-22805"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202203-812"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural \u00a0Schneider\u00a0Electric\u00a0 Classic buffer overflow vulnerability in the product",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2022-006904"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202203-812"
}
],
"trust": 0.6
}
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…