Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Homelynk_firmware
(Schneider\-Electric)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 10 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-05-26 | CVE-2021-22732 | Improper Privilege Management vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause a code execution issue when an attacker loads unauthorized code on the web server. | Homelynk_firmware, Spacelynk_firmware | 7.8 | ||
| 2021-05-26 | CVE-2021-22733 | Improper Privilege Management vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause shell access when unauthorized code is loaded into the system folder. | Homelynk_firmware, Spacelynk_firmware | 7.8 | ||
| 2021-05-26 | CVE-2021-22734 | Improper Verification of Cryptographic Signature vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause remote code execution when an attacker loads unauthorized code. | Homelynk_firmware, Spacelynk_firmware | 7.2 | ||
| 2021-05-26 | CVE-2021-22735 | Improper Verification of Cryptographic Signature vulnerability exists inhomeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could allow remote code execution when unauthorized code is copied to the device. | Homelynk_firmware, Spacelynk_firmware | 7.2 | ||
| 2021-05-26 | CVE-2021-22736 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause a denial of service when an unauthorized file is uploaded. | Homelynk_firmware, Spacelynk_firmware | 7.5 | ||
| 2021-05-26 | CVE-2021-22737 | Insufficiently Protected Credentials vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access of when credentials are discovered after a brute force attack. | Homelynk_firmware, Spacelynk_firmware | 9.8 | ||
| 2021-05-26 | CVE-2021-22738 | Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access when credentials are discovered after a brute force attack. | Homelynk_firmware, Spacelynk_firmware | 9.8 | ||
| 2021-05-26 | CVE-2021-22739 | Information Exposure vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause a device to be compromised when it is first configured. | Homelynk_firmware, Spacelynk_firmware | 5.9 | ||
| 2021-05-26 | CVE-2021-22740 | Information Exposure vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause information to be exposed when an unauthorized file is uploaded. | Homelynk_firmware, Spacelynk_firmware | 6.5 | ||
| 2018-07-03 | CVE-2018-7779 | In Schneider Electric Wiser for KNX V2.1.0 and prior, homeLYnk V2.0.1 and prior; and spaceLYnk V2.1.0 and prior, weak and unprotected FTP access could allow an attacker unauthorized access. | Homelynk_firmware, Spacelynk_firmware, Wiser_for_knx_firmware | 7.5 |