Security Bulletin: KNX Systems Publicly Available Exploit

Schneider Electric is aware of a publicly available exploit affecting KNX home and building automation systems. The products used in these systems may come from a variety of different vendors, including Schneider Electric spaceLYnk, Wiser for KNX (formerly homeLYnk), and FellerLYnk products. The exploit consists of direct access to product functions and brute force attacks on the panel, which may lead to unauthorized access to product features. CVE-2020-7525 CVE-2022-22809