CVE-2021-22713

HIGH EXPLOITED

PowerLogic ION Series - Denial of Service via Memory Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2021-22713 has been observed exploited in the wild (reported by VulnCheck KEV).

Description

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600 (see security notifcation for affected versions), which could cause the meter to reboot.

References (1)

Core 1
Core References

Scores

CVSS v3 7.5
EPSS 0.0037
EPSS Percentile 58.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

VulnCheck KEV 2023-04-11
CWE
CWE-119
Status published
Products (11)
schneider-electric/ion7650_firmware < 416
schneider-electric/powerlogic_ion7300_firmware
schneider-electric/powerlogic_ion7550_firmware < 376
schneider-electric/powerlogic_ion7650_firmware < 376
schneider-electric/powerlogic_ion7700_firmware
schneider-electric/powerlogic_ion8300_firmware
schneider-electric/powerlogic_ion8400_firmware
schneider-electric/powerlogic_ion8500_firmware
schneider-electric/powerlogic_ion8600_firmware
schneider-electric/powerlogic_ion8650_firmware < 4.40.1
... and 1 more
Published Mar 11, 2021
Tracked Since Feb 18, 2026