Description

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions).

Related CPE's

h

schneider-electric

modicon_m340_bmxp341000

-

Vulnerable

h

schneider-electric

modicon_m340_bmxp342010

-

Vulnerable

h

schneider-electric

modicon_m340_bmxp342020

-

Vulnerable

h

schneider-electric

modicon_m340_bmxp342030

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh582040

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh582040c

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh582040s

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh584040

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh584040c

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh584040s

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh586040

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh586040c

-

Vulnerable

h

schneider-electric

modicon_m580_bmeh586040s

-

Vulnerable

h

schneider-electric

modicon_m580_bmep581020

-

Vulnerable

h

schneider-electric

modicon_m580_bmep581020h

-

Vulnerable

h

schneider-electric

modicon_m580_bmep582020

-

Vulnerable

h

schneider-electric

modicon_m580_bmep582020h

-

Vulnerable

h

schneider-electric

modicon_m580_bmep582040

-

Vulnerable

h

schneider-electric

modicon_m580_bmep582040h

-

Vulnerable

h

schneider-electric

modicon_m580_bmep582040s

-

Vulnerable

h

schneider-electric

modicon_m580_bmep583020

-

Vulnerable

h

schneider-electric

modicon_m580_bmep583040

-

Vulnerable

h

schneider-electric

modicon_m580_bmep584020

-

Vulnerable

h

schneider-electric

modicon_m580_bmep584040

-

Vulnerable

h

schneider-electric

modicon_m580_bmep584040s

-

Vulnerable

h

schneider-electric

modicon_m580_bmep585040

-

Vulnerable

h

schneider-electric

modicon_m580_bmep585040c

-

Vulnerable

h

schneider-electric

modicon_m580_bmep586040

-

Vulnerable

h

schneider-electric

modicon_m580_bmep586040c

-

Vulnerable

h

schneider-electric

modicon_mc80_bmkc8020301

-

Vulnerable

h

schneider-electric

modicon_mc80_bmkc8020310

-

Vulnerable

h

schneider-electric

modicon_mc80_bmkc8030311

-

Vulnerable

h

schneider-electric

modicon_momentum_171cbu78090

-

Vulnerable

h

schneider-electric

modicon_momentum_171cbu98090

-

Vulnerable

h

schneider-electric

modicon_momentum_171cbu98091

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_1634m

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_2634m

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_2834m

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_454m

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_4634m

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_554m

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_5634m

-

Vulnerable

h

schneider-electric

modicon_premium_tsxp57_6634m

-

Vulnerable

h

schneider-electric

modicon_quantum_140cpu65150

-

Vulnerable

h

schneider-electric

modicon_quantum_140cpu65150c

-

Vulnerable

h

schneider-electric

modicon_quantum_140cpu65160

-

Vulnerable

h

schneider-electric

modicon_quantum_140cpu65160c

-

Vulnerable

h

schneider-electric

plc_simulator_for_ecostruxure_control_expert

-

Vulnerable

h

schneider-electric

plc_simulator_for_ecostruxure_process_expert

-

Vulnerable

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04

PatchVendor Advisory

Weaknesses

[email protected]

Primary
CWE-119

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.5 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-09-02T17:15:08.180

3 years ago

Last modified

2021-09-13T18:35:03.837

3 years ago