CVE-2017-6034

Name of the Vulnerable Software and Affected Versions Schneider Electric Modicon Modbus Protocol (affected versions not specified)

Description An Authentication Bypass by Capture-Replay issue was discovered, where sensitive information is transmitted in cleartext in the Modicon Modbus protocol. This may allow an attacker to replay certain commands, including run, stop, upload, and download. The issue is related to the transmission of confidential information in an unencrypted form, which can be exploited by a remote attacker to execute commands on the device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.