Versio.io

CVE-2021-22817

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 10-02-2022 12:15
Last modified: - 16-02-2022 05:57
Total changes: - 3

Description

A CWE-276: Incorrect Default Permissions vulnerability exists that could cause unauthorized access to the base installation directory leading to local privilege escalation. Affected Product: Harmony/Magelis iPC Series (All Versions), Vijeo Designer (All Versions prior to V6.2 SP11 Multiple HotFix 4), Vijeo Designer Basic (All Versions prior to V1.2.1)

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Low
Attack complexity
Local
Attack vector
High
Availability
High
Confidentiality
High
Integrity
Low
Privileges required
Unchanged
Scope
None
User interaction
7.8
Base score
1.8
5.9
Exploitability score
Impact score
 

Verification logic

OR
AND
OR
vendor=schneider-electric AND product=hmibmuhi29d2801_firmware
OR
vendor=schneider-electric AND product=hmibmuhi29d2801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmusi29d2801_firmware
OR
vendor=schneider-electric AND product=hmibmusi29d2801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmuci29d2w01_firmware
OR
vendor=schneider-electric AND product=hmibmuci29d2w01 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmu0i29d2001_firmware
OR
vendor=schneider-electric AND product=hmibmu0i29d2001 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmu0i29d200a_firmware
OR
vendor=schneider-electric AND product=hmibmu0i29d200a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmuhi29d4801_firmware
OR
vendor=schneider-electric AND product=hmibmuhi29d4801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmusi29d4801_firmware
OR
vendor=schneider-electric AND product=hmibmusi29d4801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmuci29d4w01_firmware
OR
vendor=schneider-electric AND product=hmibmuci29d4w01 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmu0i29d4001_firmware
OR
vendor=schneider-electric AND product=hmibmu0i29d4001 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmu0i29d400a_firmware
OR
vendor=schneider-electric AND product=hmibmu0i29d400a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmu0i29di00a_firmware
OR
vendor=schneider-electric AND product=hmibmu0i29di00a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmu0i29de00a_firmware
OR
vendor=schneider-electric AND product=hmibmu0i29de00a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmphi74d2801_firmware
OR
vendor=schneider-electric AND product=hmibmphi74d2801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmpsi74d2801_firmware
OR
vendor=schneider-electric AND product=hmibmpsi74d2801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmp0i74d2001_firmware
OR
vendor=schneider-electric AND product=hmibmp0i74d2001 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmp0i74d200a_firmware
OR
vendor=schneider-electric AND product=hmibmp0i74d200a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmphi74d4801_firmware
OR
vendor=schneider-electric AND product=hmibmphi74d4801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmpsi74d4801_firmware
OR
vendor=schneider-electric AND product=hmibmpsi74d4801 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmp0i74d4001_firmware
OR
vendor=schneider-electric AND product=hmibmp0i74d4001 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmp0i74d400a_firmware
OR
vendor=schneider-electric AND product=hmibmp0i74d400a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmp0i74di00a_firmware
OR
vendor=schneider-electric AND product=hmibmp0i74di00a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmp0i74de00a_firmware
OR
vendor=schneider-electric AND product=hmibmp0i74de00a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibscea53d1l01_firmware
OR
vendor=schneider-electric AND product=hmibscea53d1l01 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmoma5ddf10l_firmware
OR
vendor=schneider-electric AND product=hmibmoma5ddf10l AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmoma5dd1e01_firmware
OR
vendor=schneider-electric AND product=hmibmoma5dd1e01 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmoma5dd1101_firmware
OR
vendor=schneider-electric AND product=hmibmoma5dd1101 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmo0a5ddf10a_firmware
OR
vendor=schneider-electric AND product=hmibmo0a5ddf10a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmo0a5ddf101_firmware
OR
vendor=schneider-electric AND product=hmibmo0a5ddf101 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmo0a5dd1001_firmware
OR
vendor=schneider-electric AND product=hmibmo0a5dd1001 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmiea5dd1e01_firmware
OR
vendor=schneider-electric AND product=hmibmiea5dd1e01 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmiea5dd110l_firmware
OR
vendor=schneider-electric AND product=hmibmiea5dd110l AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmiea5dd1101_firmware
OR
vendor=schneider-electric AND product=hmibmiea5dd1101 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmiea5dd100a_firmware
OR
vendor=schneider-electric AND product=hmibmiea5dd100a AND version=-
AND
OR
vendor=schneider-electric AND product=hmibmiea5dd1001_firmware
OR
vendor=schneider-electric AND product=hmibmiea5dd1001 AND version=-
AND
OR
vendor=schneider-electric AND product=hmibscea53d1l0t_firmware
OR
vendor=schneider-electric AND product=hmibscea53d1l0t AND version=-
AND
OR
vendor=schneider-electric AND product=hmibscea53d1l0a_firmware
OR
vendor=schneider-electric AND product=hmibscea53d1l0a AND version=-
OR
vendor=schneider-electric AND product=vijeo_designer AND software_edition=basic AND versionEndExcluding=1.2.1
vendor=schneider-electric AND product=vijeo_designer AND software_edition=- AND versionEndExcluding=6.2
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=- AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp1 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp10 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp11 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp2 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp3.1 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp5.1 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp6 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp7 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp8 AND software_edition=-
vendor=schneider-electric AND product=vijeo_designer AND version=6.2 AND update=sp9 AND software_edition=-
 

Reference

 


Keywords

NVD

 

CVE-2021-22817

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.