A CWE-330 - Use of Insufficiently Random Values vulnerability exists in Smartlink, PowerTag, and Wiser Series Gateways (see security notification for version information) that could allow unauthorized users to login.
2020-12-01T15:15:12.720
2024-11-21T05:37:21.567
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | schneider-electric | acti9_smartlink_si_d_firmware | < 002.004.002 | Yes |
| Hardware | schneider-electric | acti9_smartlink_si_d | - | No |
| Operating System | schneider-electric | acti9_smartlink_si_b_firmware | < 002.004.002 | Yes |
| Hardware | schneider-electric | acti9_smartlink_si_b | - | No |
| Operating System | schneider-electric | acti9_powertag_link_firmware | < 001.008.007 | Yes |
| Hardware | schneider-electric | acti9_powertag_link | - | No |
| Operating System | schneider-electric | acti9_powertag_link_hd_firmware | < 001.008.007 | Yes |
| Hardware | schneider-electric | acti9_powertag_link_hd | - | No |
| Operating System | schneider-electric | acti9_smartlink_el_b_firmware | < 1.2.1 | Yes |
| Hardware | schneider-electric | acti9_smartlink_el_b | - | No |
| Operating System | schneider-electric | wiser_link_firmware | < 1.5.0 | Yes |
| Hardware | schneider-electric | wiser_link | - | No |
| Operating System | schneider-electric | wiser_energy_firmware | < 1.5.0 | Yes |
| Hardware | schneider-electric | wiser_energy | - | No |