PT-2023-1236 · Schneider Electric · Ecostruxure Process Expert+4
Published
2023-01-10
·
Updated
2023-10-19
·
CVE-2022-45789
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
EcoStruxure Control Expert versions prior to V2020
EcoStruxure Process Expert versions prior to V2020
Modicon M340 CPU versions prior to the latest version
Modicon M580 CPU versions prior to the latest version
Modicon M580 CPU Safety versions prior to the latest version
Description
A CWE-294: Authentication Bypass by Capture-replay issue exists, allowing execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. This could impact the confidentiality, integrity, and availability of protected information.
Recommendations
For EcoStruxure Control Expert versions prior to V2020, update to version V2020 or later.
For EcoStruxure Process Expert versions prior to V2020, update to version V2020 or later.
For Modicon M340 CPU, Modicon M580 CPU, and Modicon M580 CPU Safety, update to the latest version.
As a temporary workaround, consider restricting access to the Modbus session to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ecostruxure Control Expert
Ecostruxure Process Expert
Modicon M340 Cpu
Modicon M580 Cpu
Modicon M580 Cpu Safety