CVE-2018-7779

3 documents3 sources
Severity
7.5HIGH
EPSS
0.4%
top 41.50%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Schneider-electric Homelynk FirmwareSchneider-electric Spacelynk FirmwareSchneider-electric Wiser FOR KNX Firmware+1 more
Timeline
PublishedJul 3
Latest updateMay 13

Description

In Schneider Electric Wiser for KNX V2.1.0 and prior, homeLYnk V2.0.1 and prior; and spaceLYnk V2.1.0 and prior, weak and unprotected FTP access could allow an attacker unauthorized access.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

CVEListV5schneider_electric_se/wiser_for_knxWiser for KNX, V2.1.0 and prior, homeLYnk V2.0.1 and prior, spaceLYnk V2.1.0 and prior+2

🔴Vulnerability Details

2
GHSA
GHSA-6xh7-vq29-434x: In Schneider Electric Wiser for KNX V22022-05-13
CVEList
CVE-2018-7779: In Schneider Electric Wiser for KNX V22018-07-03
CVE-2018-7779 (HIGH CVSS 7.5) | In Schneider Electric Wiser for KNX | cvebase.io