CVE-2018-7779

7.5HIGH

Key Information:

Vendor: Schneider Electric
Status: Wiser For Knx
Vendor: CVE Published:; 19 April 2018

Summary

In Schneider Electric Wiser for KNX V2.1.0 and prior, homeLYnk V2.0.1 and prior; and spaceLYnk V2.1.0 and prior, weak and unprotected FTP access could allow an attacker unauthorized access.

Affected Version(s)

Wiser for KNX Wiser for KNX, V2.1.0 and prior

Wiser for KNX homeLYnk V2.0.1 and prior

Wiser for KNX spaceLYnk V2.1.0 and prior

References

https://www.schneider-electric.com/en/download/document/S...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 19, 2018
Vulnerability Reserved
Mar 8, 2018