QwikSec

Security Database

CVE

CWE

Training

CVE-2022-22723

Published: Feb 4, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be impacted. Affected Product: Easergy P5 (All firmware versions prior to V01.401.101)

Vendor	Product	Versions
n/a	Easergy P5 (All firmware versions prior to V01.401.101)	affected `Easergy P5 (All firmware versions prior to V01.401.101)`

Weaknesses (CWE)

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-03

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.