High severity8.0NVD Advisory· Published Jan 30, 2023· Updated Jun 17, 2026
CVE-2022-32747
CVE-2022-32747
Description
A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate users to be locked out of devices or facilitate backdoor account creation by spoofing a device on the local network. Affected Products: EcoStruxure™ Cybersecurity Admin Expert (CAE) (Versions prior to 2.2)
Affected products
2- Range: <2.2
- Schneider Electric/EcoStruxure™ Cybersecurity Admin Expert (CAE)v5Range: All
Patches
Vulnerability mechanics
References
1- download.schneider-electric.com/filesnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.