Vulnerabilities > Schneider Electric > Spacelynk Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-26 | CVE-2021-22737 | Improper Restriction of Excessive Authentication Attempts vulnerability in Schneider-Electric Homelynk Firmware and Spacelynk Firmware Insufficiently Protected Credentials vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access of when credentials are discovered after a brute force attack. | 9.8 |
| 2021-05-26 | CVE-2021-22738 | Unspecified vulnerability in Schneider-Electric Homelynk Firmware and Spacelynk Firmware Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access when credentials are discovered after a brute force attack. | 9.8 |
| 2021-05-26 | CVE-2021-22739 | Unspecified vulnerability in Schneider-Electric Homelynk Firmware and Spacelynk Firmware Information Exposure vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause a device to be compromised when it is first configured. | 5.9 |
| 2021-05-26 | CVE-2021-22740 | Unspecified vulnerability in Schneider-Electric Homelynk Firmware and Spacelynk Firmware Information Exposure vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause information to be exposed when an unauthorized file is uploaded. | 6.5 |
| 2020-08-31 | CVE-2020-7525 | Unspecified vulnerability in Schneider-Electric Spacelynk Firmware and Wiser for KNX Firmware Improper Restriction of Excessive Authentication Attempts vulnerability exists in all hardware versions of spaceLYnk and Wiser for KNX (formerly homeLYnk) which could allow an attacker to guess a password when brute force is used. | 7.5 |
| 2019-09-17 | CVE-2019-6832 | Improper Authentication vulnerability in Schneider-Electric Spacelynk Firmware and Wiser for KNX Firmware A CWE-287: Authentication vulnerability exists in spaceLYnk (all versions before 2.4.0) and Wiser for KNX (all versions before 2.4.0 - formerly known as homeLYnk), which could cause loss of control when an attacker bypasses the authentication. | 8.3 |
| 2018-07-03 | CVE-2018-7779 | Unspecified vulnerability in Schneider-Electric products In Schneider Electric Wiser for KNX V2.1.0 and prior, homeLYnk V2.0.1 and prior; and spaceLYnk V2.1.0 and prior, weak and unprotected FTP access could allow an attacker unauthorized access. | 7.5 |