PT-2019-1484 · Schneider Electric · Somachine Basic+1

Published

2019-02-14

Updated

2022-01-31

CVE-2018-7823

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions SoMachine Basic versions prior to V1.10.0.0 Modicon M221 versions prior to V1.10.0.0

Description The issue is related to configuration errors in the software. Exploitation of this issue could allow a remote attacker to launch SoMachine Basic by sending specially crafted Ethernet messages.

Recommendations For SoMachine Basic versions prior to V1.10.0.0, update to version V1.10.0.0 or later to resolve the issue. For Modicon M221 versions prior to V1.10.0.0, update to version V1.10.0.0 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-2

Related Identifiers

BDU:2019-00892

CVE-2018-7823

Affected Products

Modicon M221

Somachine Basic

PT-2019-1484 · Schneider Electric · Somachine Basic+1

CVE-2018-7823

Weakness Enumeration

Related Identifiers

Affected Products

References · 6