Detections
Analytics
Schneider Electric PowerLogic Cross-Site Request Forgery (CVE-2021-22701)
medium Tenable OT Security Plugin ID 500674
Synopsis
The remote OT asset is affected by a vulnerability.Description
A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause a user to perform an unintended action on the target device when using the HTTP web interface.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Refer to the vendor advisory.See Also
https://www.se.com/ww/en/download/document/SEVD-2021-040-01/
Plugin Details
Severity: Medium
ID: 500674
Version: 1.6
Type: remote
Family: Tenable.ot
Published: 7/21/2022
Updated: 2/20/2024
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: Low
Base Score: 3.5
Temporal Score: 2.6
Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N
CVSS Score Source: CVE-2021-22701
CVSS v3
Risk Factor: Medium
Base Score: 4.5
Temporal Score: 3.9
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:schneider-electric:powerlogic_ion7400_firmware, cpe:/o:schneider-electric:powerlogic_ion7650_firmware, cpe:/o:schneider-electric:powerlogic_ion8300_firmware, cpe:/o:schneider-electric:powerlogic_ion8400_firmware, cpe:/o:schneider-electric:powerlogic_ion8500_firmware, cpe:/o:schneider-electric:powerlogic_ion8600_firmware, cpe:/o:schneider-electric:powerlogic_ion8650_firmware, cpe:/o:schneider-electric:powerlogic_ion8800_firmware, cpe:/o:schneider-electric:powerlogic_ion9000_firmware, cpe:/o:schneider-electric:powerlogic_pm8000_firmware
Required KB Items: Tenable.ot/Schneider
Exploit Ease: No known exploits are available
Patch Publication Date: 2/19/2021
Vulnerability Publication Date: 2/19/2021
Reference Information
CVE: CVE-2021-22701
CWE: 352