CVE-2021-30062

Name of the Vulnerable Software and Affected Versions Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 versions prior to 03.23 Belden Tofino Xenon Security Appliance (affected versions not specified) Tofino Argon Security Appliance (affected versions not specified) EAGLE 20 Tofino (affected versions not specified)

Description The issue is related to the implementation of OPC Classic standards in the affected devices, specifically with errors in security settings. Crafted OPC packets can bypass the OPC enforcer, potentially allowing a remote attacker to circumvent existing security restrictions.

Recommendations For Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 versions prior to 03.23, update to version 03.23 or later. For Belden Tofino Xenon Security Appliance, Tofino Argon Security Appliance, and EAGLE 20 Tofino, at the moment, there is no information about a newer version that contains a fix for this vulnerability.