Lucene search

[email protected]CVE-2021-22790

HistorySep 02, 2021 - 5:15 p.m.

CVE-2021-22790

2021-09-0217:15:08

CWE-125

[email protected]

web.nvd.nist.gov

cve-2021-22790

cwe-125

out-of-bounds read

denial of service

modicon m580 cpu

modicon m340 cpu

modicon mc80

modicon momentum ethernet cpu

plc simulator

ecostruxure control expert

unity pro

ecostruxure process expert

modicon quantum cpu

modicon premium cpu

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

29.9%

JSON

A CWE-125: Out-of-bounds Read vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions).

Affected configurations

NVD

Node

schneider-electricmodicon_m340_bmxp341000Match-

schneider-electricmodicon_m340_bmxp342010Match-

schneider-electricmodicon_m340_bmxp342020Match-

schneider-electricmodicon_m340_bmxp342030Match-

schneider-electricmodicon_m580_bmeh582040Match-

schneider-electricmodicon_m580_bmeh582040cMatch-

schneider-electricmodicon_m580_bmeh582040sMatch-

schneider-electricmodicon_m580_bmeh584040Match-

schneider-electricmodicon_m580_bmeh584040cMatch-

schneider-electricmodicon_m580_bmeh584040sMatch-

schneider-electricmodicon_m580_bmeh586040Match-

schneider-electricmodicon_m580_bmeh586040cMatch-

schneider-electricmodicon_m580_bmeh586040sMatch-

schneider-electricmodicon_m580_bmep581020Match-

schneider-electricmodicon_m580_bmep581020hMatch-

schneider-electricmodicon_m580_bmep582020Match-

schneider-electricmodicon_m580_bmep582020hMatch-

schneider-electricmodicon_m580_bmep582040Match-

schneider-electricmodicon_m580_bmep582040hMatch-

schneider-electricmodicon_m580_bmep582040sMatch-

schneider-electricmodicon_m580_bmep583020Match-

schneider-electricmodicon_m580_bmep583040Match-

schneider-electricmodicon_m580_bmep584020Match-

schneider-electricmodicon_m580_bmep584040Match-

schneider-electricmodicon_m580_bmep584040sMatch-

schneider-electricmodicon_m580_bmep585040Match-

schneider-electricmodicon_m580_bmep585040cMatch-

schneider-electricmodicon_m580_bmep586040Match-

schneider-electricmodicon_m580_bmep586040cMatch-

schneider-electricmodicon_mc80_bmkc8020301Match-

schneider-electricmodicon_mc80_bmkc8020310Match-

schneider-electricmodicon_mc80_bmkc8030311Match-

schneider-electricmodicon_momentum_171cbu78090Match-

schneider-electricmodicon_momentum_171cbu98090Match-

schneider-electricmodicon_momentum_171cbu98091Match-

schneider-electricmodicon_premium_tsxp57_1634mMatch-

schneider-electricmodicon_premium_tsxp57_2634mMatch-

schneider-electricmodicon_premium_tsxp57_2834mMatch-

schneider-electricmodicon_premium_tsxp57_454mMatch-

schneider-electricmodicon_premium_tsxp57_4634mMatch-

schneider-electricmodicon_premium_tsxp57_554mMatch-

schneider-electricmodicon_premium_tsxp57_5634mMatch-

schneider-electricmodicon_premium_tsxp57_6634mMatch-

schneider-electricmodicon_quantum_140cpu65150Match-

schneider-electricmodicon_quantum_140cpu65150cMatch-

schneider-electricmodicon_quantum_140cpu65160Match-

schneider-electricmodicon_quantum_140cpu65160cMatch-

schneider-electricplc_simulator_for_ecostruxure_control_expertMatch-

schneider-electricplc_simulator_for_ecostruxure_process_expertMatch-

CPENameOperatorVersion
schneider-electric:modicon_m340_bmxp341000schneider-electric modicon m340 bmxp341000eq-
schneider-electric:modicon_m340_bmxp342010schneider-electric modicon m340 bmxp342010eq-
schneider-electric:modicon_m340_bmxp342020schneider-electric modicon m340 bmxp342020eq-
schneider-electric:modicon_m340_bmxp342030schneider-electric modicon m340 bmxp342030eq-
schneider-electric:modicon_m580_bmeh582040schneider-electric modicon m580 bmeh582040eq-
schneider-electric:modicon_m580_bmeh582040cschneider-electric modicon m580 bmeh582040ceq-
schneider-electric:modicon_m580_bmeh582040sschneider-electric modicon m580 bmeh582040seq-
schneider-electric:modicon_m580_bmeh584040schneider-electric modicon m580 bmeh584040eq-
schneider-electric:modicon_m580_bmeh584040cschneider-electric modicon m580 bmeh584040ceq-
schneider-electric:modicon_m580_bmeh584040sschneider-electric modicon m580 bmeh584040seq-

CPE	Name	Operator	Version
schneider-electric:modicon_m340_bmxp341000	schneider-electric modicon m340 bmxp341000	eq	-
schneider-electric:modicon_m340_bmxp342010	schneider-electric modicon m340 bmxp342010	eq	-
schneider-electric:modicon_m340_bmxp342020	schneider-electric modicon m340 bmxp342020	eq	-
schneider-electric:modicon_m340_bmxp342030	schneider-electric modicon m340 bmxp342030	eq	-
schneider-electric:modicon_m580_bmeh582040	schneider-electric modicon m580 bmeh582040	eq	-
schneider-electric:modicon_m580_bmeh582040c	schneider-electric modicon m580 bmeh582040c	eq	-
schneider-electric:modicon_m580_bmeh582040s	schneider-electric modicon m580 bmeh582040s	eq	-
schneider-electric:modicon_m580_bmeh584040	schneider-electric modicon m580 bmeh584040	eq	-
schneider-electric:modicon_m580_bmeh584040c	schneider-electric modicon m580 bmeh584040c	eq	-
schneider-electric:modicon_m580_bmeh584040s	schneider-electric modicon m580 bmeh584040s	eq	-

Rows per page:

1-10 of 491

CNA Affected

[
  {
    "product": "Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions)",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions)"
      }
    ]
  }
]

References

download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04

download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-05

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

29.9%

JSON

Related for CVE-2021-22790

cvelist1 nessus1 prion1 nvd1