CVE-2021-22784 in Se and Schneider Electric Products
Published on July 21, 2021

A CWE-306: Missing Authentication for Critical Function vulnerability exists in C-Bus Toolkit v1.15.8 and prior that could allow an attacker to use a crafted webpage to obtain remote access to the system.

NVD

Weakness Type

Missing Authentication for Critical Function

The software does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

Products Associated with CVE-2021-22784

stack.watch emails you whenever new vulnerabilities are published in Se C Bus Toolkit or Schneider Electric C Bus Toolkit. Just hit a watch button to start following.

Se C Bus Toolkit

Schneider Electric C Bus Toolkit

Exploit Probability

EPSS

1.43%

Percentile

80.37%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-22784 in Se and Schneider Electric ProductsPublished on July 21, 2021

Weakness Type

Missing Authentication for Critical Function

Products Associated with CVE-2021-22784

Exploit Probability

CVE-2021-22784 in Se and Schneider Electric Products
Published on July 21, 2021