CVE-2021-22276 MEDIUM

CVE-2021-22276: free@home System Access Point FW integrity check can be bypassed.

Vendor Abb
Product System Access Point
Weakness CWE-200 · Info exposure
Published September 23, 2021
Last update September 16, 2024
View on NVD All CVEs

CVSS base score

6.1/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H

What the vulnerability does

01Description

The vulnerability allows a successful attacker to bypass the integrity check of FW uploaded to the free@home System Access Point.

Key dates

02Disclosure timeline

September 23, 2021 CVE published
September 16, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2024-6336 Security misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposure CVE-2022-30990 Sensitive information disclosure due to insecure folder permissions CVE-2022-46257 Information disclosure in GitHub Enterprise Server leading to unauthorized viewing of private repository names CVE-2024-24758 Proxy-Authorization header not cleared on cross-origin redirect in fetch in Undici CVE-2025-59240 Microsoft Excel Information Disclosure Vulnerability