← Back

Powerlogic Pm8000 Firmware

powerlogic_pm8000_firmware

Vendor: Schneider Electric • 5 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-46680
1Schneider Electric
5Powerlogic Ion7400 Firmware
Powerlogic Ion8650 FirmwarePowerlogic Ion8800 Firmware+2 more
Nov 21, 2024
May 22, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
A CWE-319: Cleartext transmission of sensitive information vulnerability exists that could cause disclosure of sensitive information, denial of service, or modification of data if an attacker is able to intercept networ...Show more
A CWE-319: Cleartext transmission of sensitive information vulnerability exists that could cause disclosure of sensitive information, denial of service, or modification of data if an attacker is able to intercept network traffic. Show less
CVE-2021-22714
1Schneider Electric
3Powerlogic Ion7400 Firmware
Powerlogic Ion9000 FirmwarePowerlogic Pm8000 Firmware
Nov 21, 2024
Mar 11, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400, PM8000 and ION9000 (All versions prior to V3.0.0), which could cause the meter to reboot or al...Show more
A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400, PM8000 and ION9000 (All versions prior to V3.0.0), which could cause the meter to reboot or allow for remote code execution.Show less
CVE-2021-22703
1Schneider Electric
10Powerlogic Ion7400 Firmware
Powerlogic Ion7650 FirmwarePowerlogic Ion8300 Firmware+7 more
May 29, 2026
Feb 19, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that c...Show more
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts HTTP network traffic between a user and the device.Show less
CVE-2021-22702
1Schneider Electric
12Powerlogic Ion7300 Firmware
Powerlogic Ion7400 FirmwarePowerlogic Ion7650 Firmware+9 more
May 29, 2026
Feb 19, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected ver...Show more
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts Telnet network traffic between a user and the device.Show less
CVE-2021-22701
1Schneider Electric
10Powerlogic Ion7400 Firmware
Powerlogic Ion7650 FirmwarePowerlogic Ion8300 Firmware+7 more
May 29, 2026
Feb 19, 2021
N/A· v4
4.5 MEDIUM· v3
3.5 LOW· v2
A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause a user to...Show more
A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause a user to perform an unintended action on the target device when using the HTTP web interface.Show less