CVE-2022-22806

CRITICAL

Schneider-electric Smt Series 1015 Up... - Authentication Bypass

Title source: rule

Description

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection is sent. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)

References (1)

[Vendor Advisory] https://www.se.com/ww/en/download/document/SEVD-2022-067-02/

Scores

CVSS v3 9.8

EPSS 0.0021

EPSS Percentile 42.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-294

Status published

Affected Products (8)

schneider-electric/smt_series_1015_ups_firmware < 04.5

schneider-electric/smc_series_1018_ups_firmware < 04.2

schneider-electric/smtl_series_1026_ups_firmware < 02.9

schneider-electric/scl_series_1029_ups_firmware < 02.5

schneider-electric/scl_series_1030_ups_firmware < 02.5

schneider-electric/scl_series_1036_ups_firmware < 02.5

schneider-electric/scl_series_1037_ups_firmware < 03.1

schneider-electric/smx_series_1031_ups_firmware < 03.1

Timeline

Published Mar 09, 2022

Tracked Since Feb 18, 2026