How severe is CVE-2022-43378?

CVE-2022-43378 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2022-43378

6.5MEDIUM

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause the user to be tricked into performing unintended actions when external address frames are

发布于: 4/18/2023更新于: 11/21/2024

描述

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause the user to be tricked into performing unintended actions when external address frames are not properly restricted. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)

AI分析AI驱动

受影响产品

schneider-electricnetbotz_355_firmware

schneider-electricnetbotz_355

schneider-electricnetbotz_450_firmware

schneider-electricnetbotz_450

schneider-electricnetbotz_455_firmware

schneider-electricnetbotz_455

schneider-electricnetbotz_550_firmware

schneider-electricnetbotz_550

schneider-electricnetbotz_570_firmware

schneider-electricnetbotz_570

参考资料

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-312-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-312-01-NetBotz_4_Security_Notification.pdf
PatchVendor Advisory
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-312-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-312-01-NetBotz_4_Security_Notification.pdf
PatchVendor Advisory