How can the CVE-2021-22734 vulnerability affect me?

CVE-2021-22734 vulnerability can potentially allow an attacker to remotely execute code on your homeLYnk or spaceLYnk device by loading unauthorized code.

What is the severity of CVE-2021-22734 vulnerability?

The severity of CVE-2021-22734 vulnerability is high, with a CVSS score of 7.2.

Is Schneider-electric Spacelynk firmware vulnerable to CVE-2021-22734?

Yes, Schneider-electric Spacelynk firmware version up to and including 2.6.0 is vulnerable to CVE-2021-22734.

How can I fix CVE-2021-22734 vulnerability?

To fix CVE-2021-22734 vulnerability, it is recommended to update your homeLYnk or spaceLYnk firmware to a version beyond 2.6.0.

Vulnerability/
CVE-2021-22734

high

7.2

CWE

347

26/5/2021

3/8/2024

CVE-2021-22734

Q: What is CVE-2021-22734 vulnerability?

CVE-2021-22734 is an Improper Verification of Cryptographic Signature vulnerability that exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior versions, which could allow remote code execution by loading unauthorized code.

First published: Wed May 26 2021(Updated: )

Improper Verification of Cryptographic Signature vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause remote code execution when an attacker loads unauthorized code.

Credit: cybersecurity@se.com

Affected Software	Affected Version	How to fix
Schneider-electric Spacelynk Firmware	<=2.6.0
Schneider-electric Spacelynk
Schneider-electric Homelynk Firmware	<=2.6.0
Schneider-electric Homelynk

Never miss a vulnerability like this again

Reference Links

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-130-04

Frequently Asked Questions

What is CVE-2021-22734 vulnerability?
CVE-2021-22734 is an Improper Verification of Cryptographic Signature vulnerability that exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior versions, which could allow remote code execution by loading unauthorized code.
How can the CVE-2021-22734 vulnerability affect me?
CVE-2021-22734 vulnerability can potentially allow an attacker to remotely execute code on your homeLYnk or spaceLYnk device by loading unauthorized code.
What is the severity of CVE-2021-22734 vulnerability?
The severity of CVE-2021-22734 vulnerability is high, with a CVSS score of 7.2.
Is Schneider-electric Spacelynk firmware vulnerable to CVE-2021-22734?
Yes, Schneider-electric Spacelynk firmware version up to and including 2.6.0 is vulnerable to CVE-2021-22734.
How can I fix CVE-2021-22734 vulnerability?
To fix CVE-2021-22734 vulnerability, it is recommended to update your homeLYnk or spaceLYnk firmware to a version beyond 2.6.0.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/weakness
agent/author
agent/last-modified-date
agent/severity
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/schneider-electric
canonical/schneider-electric spacelynk firmware
version/schneider-electric spacelynk firmware/2.6.0
canonical/schneider-electric spacelynk
canonical/schneider-electric homelynk firmware
version/schneider-electric homelynk firmware/2.6.0
canonical/schneider-electric homelynk

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.