1. EXECUTIVE SUMMARY
- CVSS v3 6.1
- ATTENTION: Low attack complexity
- Vendor: Schneider Electric
- Equipment: PowerLogic P5
- Vulnerability: Use of a Broken or Risky Cryptographic Algorithm
2. RISK EVALUATION
If an attacker has physical access to the device, it is possible to reboot the device, cause a denial of service condition, or gain full control of the relay by abusing a specially crafted reset token.
3. TECHNICAL DETAILS
3.1 AFFECTED PRODUCTS
Schneider Electric reports the following products are affected:
- Schneider Electric PowerLogic P5: Versions 01.500.104 and prior
3
[…]
This article has been indexed from All CISA Advisories
Read the original article: