cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-22812,https://securityvulnerability.io/vulnerability/CVE-2022-22812,Cross-Site Scripting Vulnerability in Schneider Electric SpaceLYnk and Wiser for KNX,"A Cross-Site Scripting (XSS) vulnerability exists in Schneider Electric's spaceLYnk, Wiser for KNX, and fellerLYnk products, allowing attackers to inject arbitrary JavaScript code. This vulnerability can enable unauthorized access to web sessions, compromising sensitive information and user interactions in affected versions (V2.6.2 and prior). It is crucial for users of these products to implement security measures to mitigate risks associated with this vulnerability.",Schneider Electric,"Spacelynk (v2.6.2 And Prior), Wiser For Knx (formerly Homelynk) (v2.6.2 And Prior), Fellerlynk (v2.6.2 And Prior)",6.1,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2022-02-09T22:05:09.000Z,0
CVE-2022-22811,https://securityvulnerability.io/vulnerability/CVE-2022-22811,Cross-Site Request Forgery in Schneider Electric SpaceLYnk and Wiser for KNX,"A Cross-Site Request Forgery (CSRF) vulnerability in Schneider Electric's spaceLYnk, Wiser for KNX, and fellerLYnk products allows malicious actors to trick users into executing unintended commands. By luring users to a fraudulent website, an attacker could manipulate configurations and settings without direct interaction with the systems, leading to potential system misconfigurations and security lapses.",Schneider Electric,"Spacelynk (v2.6.2 And Prior), Wiser For Knx (formerly Homelynk) (v2.6.2 And Prior), Fellerlynk (v2.6.2 And Prior)",8.1,HIGH,0.0005300000193528831,false,,false,false,false,,,false,false,,2022-02-09T22:05:08.000Z,0
CVE-2022-22810,https://securityvulnerability.io/vulnerability/CVE-2022-22810,Improper Restriction of Authentication Attempts in spaceLYnk and Wiser for KNX by Schneider Electric,"The vulnerability in Schneider Electric's spaceLYnk and Wiser for KNX products allows an attacker to perform excessive authentication attempts, potentially granting unauthorized access. This flaw arises from inadequate restrictions on the number of login attempts, which could be exploited to manipulate admin accounts. Affected versions include spaceLYnk, Wiser for KNX, and fellerLYnk, all up to version 2.6.2.",Schneider Electric,"Spacelynk (v2.6.2 And Prior), Wiser For Knx (formerly Homelynk) (v2.6.2 And Prior), Fellerlynk (v2.6.2 And Prior)",9.8,CRITICAL,0.002899999963119626,false,,false,false,false,,,false,false,,2022-02-09T22:05:07.000Z,0
CVE-2022-22809,https://securityvulnerability.io/vulnerability/CVE-2022-22809,Missing Authentication Vulnerability in Schneider Electric's spaceLYnk and Wiser for KNX,"A vulnerability exists in Schneider Electric's products where the lack of authentication allows unauthorized users to modify sensitive touch configurations. This security flaw poses a risk to the integrity of device settings in spaceLYnk, Wiser for KNX, and fellerLYnk prior to version 2.6.2. An attacker exploiting this vulnerability could potentially alter configurations without appropriate credentials, compromising the security framework of these systems.",Schneider Electric,"Spacelynk (v2.6.2 And Prior), Wiser For Knx (formerly Homelynk) (v2.6.2 And Prior), Fellerlynk (v2.6.2 And Prior)",5.3,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2022-02-09T00:00:00.000Z,0