How severe is CVE-2022-43378?

CVE-2022-43378 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2022-43378

6.5MEDIUM

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause the user to be tricked into performing unintended actions when external address frames are

Veröffentlicht: 4/18/2023Aktualisiert: 11/21/2024

Beschreibung

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause the user to be tricked into performing unintended actions when external address frames are not properly restricted. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)

KI-AnalyseKI-gestützt

Betroffene Produkte

schneider-electricnetbotz_355_firmware

schneider-electricnetbotz_355

schneider-electricnetbotz_450_firmware

schneider-electricnetbotz_450

schneider-electricnetbotz_455_firmware

schneider-electricnetbotz_455

schneider-electricnetbotz_550_firmware

schneider-electricnetbotz_550

schneider-electricnetbotz_570_firmware

schneider-electricnetbotz_570

Referenzen

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-312-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-312-01-NetBotz_4_Security_Notification.pdf
PatchVendor Advisory
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-312-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-312-01-NetBotz_4_Security_Notification.pdf
PatchVendor Advisory