Vulnerabilities > Schneider Electric > Software Update > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-28 | CVE-2021-22799 | Insufficient Entropy vulnerability in Schneider-Electric Software Update 2.3.0/2.3.1/2.5.1 A CWE-331: Insufficient Entropy vulnerability exists that could cause unintended connection from an internal network to an external network when an attacker manages to decrypt the SESU proxy password from the registry. | 3.8 |