Vulnerabilities > Schneider Electric > Fellerlynk Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-02-11 CVE-2021-22806 Unspecified vulnerability in Schneider-Electric products
A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could cause data exfiltration and unauthorized access when accessing a malicious website.
network
low complexity
schneider-electric
7.5
2022-02-09 CVE-2022-22811 Unspecified vulnerability in Schneider-Electric products
A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists that could induce users to perform unintended actions, leading to the override of the system?s configurations when an attacker persuades a user to visit a rogue website.
network
low complexity
schneider-electric
8.1