Vulnerability Description
A CWE-287: Authentication vulnerability exists in spaceLYnk (all versions before 2.4.0) and Wiser for KNX (all versions before 2.4.0 - formerly known as homeLYnk), which could cause loss of control when an attacker bypasses the authentication.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schneider-Electric | Wiser For Knx Firmware | < 2.4.0 |
| Schneider-Electric | Lss100100 | - |
| Schneider-Electric | Spacelynk Firmware | < 2.4.0 |
| Schneider-Electric | Lss100200 | - |
Related Weaknesses (CWE)
References
- https://www.schneider-electric.com/en/download/document/SEVD-2019-225-07/Vendor Advisory
- https://www.schneider-electric.com/en/download/document/SEVD-2019-225-07/Vendor Advisory
FAQ
What is CVE-2019-6832?
CVE-2019-6832 is a vulnerability with a CVSS score of 8.3 (HIGH). A CWE-287: Authentication vulnerability exists in spaceLYnk (all versions before 2.4.0) and Wiser for KNX (all versions before 2.4.0 - formerly known as homeLYnk), which could cause loss of control wh...
How severe is CVE-2019-6832?
CVE-2019-6832 has been rated HIGH with a CVSS base score of 8.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-6832?
Check the references section above for vendor advisories and patch information. Affected products include: Schneider-Electric Wiser For Knx Firmware, Schneider-Electric Lss100100, Schneider-Electric Spacelynk Firmware, Schneider-Electric Lss100200.