CVE-2021-22714

CRITICAL

PowerLogic ION7400-ION9000 - Buffer Overflow

Title source: llm

Description

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400, PM8000 and ION9000 (All versions prior to V3.0.0), which could cause the meter to reboot or allow for remote code execution.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.se.com/ww/en/download/document/SEVD-2021-068-02

Scores

CVSS v3 9.8

EPSS 0.0227

EPSS Percentile 84.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (3)

schneider-electric/powerlogic_ion7400_firmware < 3.0.0

schneider-electric/powerlogic_ion9000_firmware < 3.0.0

schneider-electric/powerlogic_pm8000_firmware < 3.0.0

Published Mar 11, 2021

Tracked Since Feb 18, 2026