Vulnerabilities > Schneider Electric > Evlink Parking Evp2Pe Firmware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-28 | CVE-2021-22820 | Insufficient Session Expiration vulnerability in Schneider-Electric products A CWE-614 Insufficient Session Expiration vulnerability exists that could allow an attacker to maintain an unauthorized access over a hijacked session to the charger station web server even after the legitimate user account holder has changed his password. | 9.8 |