CVE-2021-22798
HIGHConext ComBox Firmware - Insufficiently Protected Credentials
Title source: llmDescription
A CWE-522: Insufficiently Protected Credentials vulnerability exists that could cause Sensitive data such as login credentials being exposed when a Network is sniffed. Affected Product: Conext� ComBox (All Versions)
References (1)
Core 1
Core References
Mitigation, Vendor Advisory x_refsource_misc
https://www.se.com/in/en/download/document/SEVD-2021-257-04/
Scores
CVSS v3
7.5
EPSS
0.0029
EPSS Percentile
52.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-522
Status
published
Products (1)
schneider-electric/conext_combox_firmware
Published
Feb 11, 2022
Tracked Since
Feb 18, 2026