N/A

An issue was discovered on Schneider Electric IONXXXX series power meters ION73XX series, ION75XX series, ION76XX series, ION8650 series, ION8800 series, and PM5XXX series. There is no CSRF Token generated to authenticate the user during a session. Successful exploitation of this vulnerability can allow unauthorized configuration changes to be made and saved.

N/A

N/A

Schneider Electric ION Power Meter系列设备跨站请求伪造漏洞

Schneider Electric ION7300 Power Meter等都是法国施耐德电气（Schneider Electric）公司的电能质量分析仪表。 Schneider Electric ION Power Meter系列设备中存在跨站请求伪造漏洞，该漏洞源于程序没有正确验证HTTP请求。远程攻击者可利用该漏洞执行未授权操作，获取受影响设备的访问权限。以下产品受到影响：Schneider-Electric IONPM5000 Power Meter，Schneider-Electric ION

N/A

N/A