George Lashenko

**Name of the Vulnerable Software and Affected Versions** CompactLogix 5370 L1, L2, and L3 Controllers, Compact GuardLogix 5370 controllers, and Armor Compact GuardLogix 5370 Controllers versions 20 through 30 and earlier. **Description** An attacker could send a crafted HTTP/HTTPS request to render the web server unavailable and/or lead to remote code execution caused by a stack-based buffer overflow vulnerability. A cold restart is required for recovering. **Recommendations** For versions 20 through 30 and earlier, a cold restart is required to recover from the issue. As a temporary workaround, consider restricting access to the web server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CompactLogix 5370 L1, L2, and L3 Controllers versions 20 through 30 Compact GuardLogix 5370 controllers versions 20 through 30 Armor Compact GuardLogix 5370 Controllers versions 20 through 30 **Description** An attacker could send crafted SMTP packets to cause a denial-of-service condition where the controller enters a major non-recoverable faulted state. This issue affects CompactLogix 5370 and Compact GuardLogix 5370 controllers. **Recommendations** For versions 20 through 30 of CompactLogix 5370 L1, L2, and L3 Controllers, consider disabling the SMTP functionality until a patch is available. For versions 20 through 30 of Compact GuardLogix 5370 controllers, restrict access to the SMTP service to minimize the risk of exploitation. For versions 20 through 30 of Armor Compact GuardLogix 5370 Controllers, avoid using the affected controllers in production environments until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Schneider Electric ConneXium firewalls version TCSEFEC23F3F20 Schneider Electric ConneXium firewalls version TCSEFEC23F3F21 Schneider Electric ConneXium firewalls version TCSEFEC23FCF20 Schneider Electric ConneXium firewalls version TCSEFEC23FCF21 Schneider Electric ConneXium firewalls version TCSEFEC2CF3F20 **Description** A stack-based buffer overflow issue can be triggered during the SNMP login authentication process, potentially allowing an attacker to remotely execute code. **Recommendations** For version TCSEFEC23F3F20, consider disabling SNMP login authentication until a patch is available. For version TCSEFEC23F3F21, consider disabling SNMP login authentication until a patch is available. For version TCSEFEC23FCF20, consider disabling SNMP login authentication until a patch is available. For version TCSEFEC23FCF21, consider disabling SNMP login authentication until a patch is available. For version TCSEFEC2CF3F20, consider disabling SNMP login authentication until a patch is available.