CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2021-22817

HIGH
7.8
CVSS Severity Score
EPSS Score0.1490%
EPSS Percentile23.36th
Published2022年2月9日
Last Modified2024年11月21日

Vulnerability Description

A CWE-276: Incorrect Default Permissions vulnerability exists that could cause unauthorized access to the base installation directory leading to local privilege escalation. Affected Product: Harmony/Magelis iPC Series (All Versions), Vijeo Designer (All Versions prior to V6.2 SP11 Multiple HotFix 4), Vijeo Designer Basic (All Versions prior to V1.2.1)

Affected Platforms (CPE)

💻
Schneider Electric

Hmibmuhi29d2801 Firmware

All versions
💻
Schneider Electric

Hmibmusi29d2801 Firmware

All versions
💻
Schneider Electric

Hmibmuci29d2w01 Firmware

All versions
💻
Schneider Electric

Hmibmu0i29d2001 Firmware

All versions
💻
Schneider Electric

Hmibmu0i29d200a Firmware

All versions
💻
Schneider Electric

Hmibmuhi29d4801 Firmware

All versions
💻
Schneider Electric

Hmibmusi29d4801 Firmware

All versions
💻
Schneider Electric

Hmibmuci29d4w01 Firmware

All versions
💻
Schneider Electric

Hmibmu0i29d4001 Firmware

All versions
💻
Schneider Electric

Hmibmu0i29d400a Firmware

All versions
💻
Schneider Electric

Hmibmu0i29di00a Firmware

All versions
💻
Schneider Electric

Hmibmu0i29de00a Firmware

All versions
💻
Schneider Electric

Hmibmphi74d2801 Firmware

All versions
💻
Schneider Electric

Hmibmpsi74d2801 Firmware

All versions
💻
Schneider Electric

Hmibmp0i74d2001 Firmware

All versions
💻
Schneider Electric

Hmibmp0i74d200a Firmware

All versions
💻
Schneider Electric

Hmibmphi74d4801 Firmware

All versions
💻
Schneider Electric

Hmibmpsi74d4801 Firmware

All versions
💻
Schneider Electric

Hmibmp0i74d4001 Firmware

All versions
💻
Schneider Electric

Hmibmp0i74d400a Firmware

All versions
💻
Schneider Electric

Hmibmp0i74di00a Firmware

All versions
💻
Schneider Electric

Hmibmp0i74de00a Firmware

All versions
💻
Schneider Electric

Hmibscea53d1l01 Firmware

All versions
💻
Schneider Electric

Hmibmoma5ddf10l Firmware

All versions
💻
Schneider Electric

Hmibmoma5dd1e01 Firmware

All versions
💻
Schneider Electric

Hmibmoma5dd1101 Firmware

All versions
💻
Schneider Electric

Hmibmo0a5ddf10a Firmware

All versions
💻
Schneider Electric

Hmibmo0a5ddf101 Firmware

All versions
💻
Schneider Electric

Hmibmo0a5dd1001 Firmware

All versions
💻
Schneider Electric

Hmibmiea5dd1e01 Firmware

All versions
💻
Schneider Electric

Hmibmiea5dd110l Firmware

All versions
💻
Schneider Electric

Hmibmiea5dd1101 Firmware

All versions
💻
Schneider Electric

Hmibmiea5dd100a Firmware

All versions
💻
Schneider Electric

Hmibmiea5dd1001 Firmware

All versions
💻
Schneider Electric

Hmibscea53d1l0t Firmware

All versions
💻
Schneider Electric

Hmibscea53d1l0a Firmware

All versions
📦
Schneider Electric

Vijeo Designer

< 1.2.1
📦
Schneider Electric

Vijeo Designer

< 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2
📦
Schneider Electric

Vijeo Designer

= 6.2

References & Advisories

🔗 https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-06
🔗 https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-039-06

相關漏洞威脅

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...