CVE-2018-7790

Name of the Vulnerable Software and Affected Versions Schneider Electric Modicon M221 versions prior to V1.6.2.0

Description The issue is caused by weaknesses in the authentication procedure, allowing a remote attacker to bypass authentication. This can enable unauthorized users to replay authentication sequences. If exploited, an attacker connected to a Modicon M221 can upload the original program from the PLC.

Recommendations For versions prior to V1.6.2.0, update the firmware to version V1.6.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the Modicon M221 to minimize the risk of exploitation.