CVE-2021-30065

Name of the Vulnerable Software and Affected Versions Schneider Electric ConneXium Tofino Firewall versions prior to 03.23 Belden Tofino Xenon Security Appliance (affected versions not specified) Tofino Argon Security Appliance (affected versions not specified) EAGLE 20 Tofino (affected versions not specified)

Description The issue is related to the implementation of the MODBUS protocol in the affected devices, allowing an attacker to bypass existing security restrictions using specially crafted ModBus packets. This is due to errors in security settings. The vulnerability can be exploited remotely.

Recommendations For Schneider Electric ConneXium Tofino Firewall, update to version 03.23 or later. For Belden Tofino Xenon Security Appliance, Tofino Argon Security Appliance, and EAGLE 20 Tofino, at the moment, there is no information about a newer version that contains a fix for this vulnerability.