Rewterz

Rewterz Threat Advisory –CVE-2020-4138 – IBM SiteProtector Vulnerability

July 14, 2022
Rewterz

Rewterz Threat Advisory – ICS: Siemens Simcenter Femap Vulnerability

July 14, 2022

Rewterz Threat Advisory – ICS: Schneider Electric Easergy P5 Vulnerability

Severity

Medium

Analysis Summary

CVE-2022-34758

Schneider Electric Easergy P5 is vulnerable to a denial of service, caused by improper input validation. A local authenticated attacker could exploit this vulnerability to disable the watchdog function.

Impact

  • Denial of Service

Indicators Of Compromise

CVE

  • CVE-2022-34758

Affected Vendors

Schneider Electric

Affected Products

Schneider Electric Easergy P5 01.401.101
Schneider Electric Easergy P5 01.401.100

Remediation

Upgrade to the latest version of Schneider Electric Easergy P5 firmware, available from the Schneider Electric Website.

Schneider Electric Website

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.