CVE-2022-32517
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause an adversary to trick the interface user/admin into interacting with the application in an unintended way when the product does not implement restrictions on the ability to render within frames on external addresses. Affected Products: Conext™ ComBox (All Versions)
Existe una vulnerabilidad CWE-1021: Restricción inadecuada de las capas o marcos de la interfaz de usuario renderizados que podría causar que un adversario engañe la interfaz user/admin para que interactúe con la aplicación de una manera no deseada cuando el producto no implementa restricciones en la capacidad de renderizar dentro de los marcos. en direcciones externas. Productos afectados: Conext? ComBox (todas las versiones)
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-06-07 CVE Reserved
- 2023-01-30 CVE Published
- 2024-08-03 CVE Updated
- 2024-08-22 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1021: Improper Restriction of Rendered UI Layers or Frames
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Schneider-electric Search vendor "Schneider-electric" | Conext Combox Firmware Search vendor "Schneider-electric" for product "Conext Combox Firmware" | * | - |
Affected
| in | Schneider-electric Search vendor "Schneider-electric" | Conext Combox Search vendor "Schneider-electric" for product "Conext Combox" | - | - |
Safe
|