Vulnerabilities > Schneider Electric > Wiser Smart Eer21001 Firmware > High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-02	CVE-2022-30236	Unspecified vulnerability in Schneider-Electric products A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could allow unauthorized access when an attacker uses cross-domain attacks. network low complexity schneider-electric	8.2
2022-06-02	CVE-2022-30237	Unspecified vulnerability in Schneider-Electric products A CWE-311: Missing Encryption of Sensitive Data vulnerability exists that could allow authentication credentials to be recovered when an attacker breaks the encoding. network low complexity schneider-electric	7.5
2022-06-02	CVE-2022-30238	Unspecified vulnerability in Schneider-Electric products A CWE-287: Improper Authentication vulnerability exists that could allow an attacker to take over the admin account when an attacker hijacks a session. network low complexity schneider-electric	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.