What is GHSA-f3x2-w4cq-5v25?

GHSA-f3x2-w4cq-5v25 is a security advisory published by GitHub Security Advisories with Medium severity. A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650,...

Which CVE IDs does GHSA-f3x2-w4cq-5v25 cover?

GHSA-f3x2-w4cq-5v25 covers the following CVE IDs: CVE-2021-22701. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-f3x2-w4cq-5v25?

GHSA-f3x2-w4cq-5v25 has a CVSS v3 base score of 4.5, published by GitHub Security Advisories.

GHSA-f3x2-w4cq-5v25MediumCVSS 4.5

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650,...

Vendor

GitHub Security Advisories

Published

May 24, 2022

Last Modified

May 29, 2026

🔗 CVE IDs covered (1)

CVE-2021-22701 →

📋 Description

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause a user to perform an unintended action on the target device when using the HTTP web interface.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2021-22701
https://www.se.com/ww/en/download/document/SEVD-2021-040-01
https://github.com/advisories/GHSA-f3x2-w4cq-5v25