Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-22788

🗓️ 11 Feb 2022 17:40:33Reported by schneiderType 
cve
 cve🔗 web.nvd.nist.gov👁 67 Views

CVE-2021-22788 CWE-787: Out-of-bounds Write vulnerability, denial of service via crafted HTTP request to Modicon M340, Modicon Premium, and Modicon Quantum devices

Related
Detection
Affected
Refs
NVD
Node
schneider-electricmodicon_m340_bmxp342020_firmwareRange<3.40
AND
schneider-electricmodicon_m340_bmxp342020Match-
Node
schneider-electricbmxnoe0100_firmware
AND
schneider-electricbmxnoe0100Match-
Node
schneider-electricbmxnoe0110_firmware
AND
schneider-electricbmxnoe0110Match-
Node
schneider-electricbmxnoc0401_firmware
AND
schneider-electricbmxnoc0401Match-
Node
schneider-electricbmxnor0200h_rtu_firmware
AND
schneider-electricbmxnor0200h_rtuMatch-
Node
schneider-electrictsxp574634_firmware
AND
schneider-electrictsxp574634Match-
Node
schneider-electrictsxp575634_firmware
AND
schneider-electrictsxp575634Match-
Node
schneider-electrictsxp576634_firmware
AND
schneider-electrictsxp576634Match-
Node
schneider-electric140cpu65150_firmware
AND
schneider-electric140cpu65150Match-
Node
schneider-electric140noe771x1_firmware
AND
schneider-electric140noe771x1Match-
Node
schneider-electric140noc78x00_firmware
AND
schneider-electric140noc78x00Match-
Node
schneider-electric140noc77101_firmware
AND
schneider-electric140noc77101Match-
Node
schneider-electrictsxety4103_firmware
AND
schneider-electrictsxety4103Match-
Node
schneider-electrictsxety5103_firmware
AND
schneider-electrictsxety5103Match-
[
  {
    "product": "Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340 X80 Ethernet Communication Modules: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (All Versions), Modicon Premium Processors with integrated Ethernet (Copro): TSXP574634, TSXP575634, TSXP576634 (All Versions), Modicon Quantum Processors with Integrated Ethernet (Copro): 140CPU65xxxxx (All Versions), Modicon Quantum Communication Modules: 140NOE771x1, 140NOC78x00, 140NOC77101 (All Versions), Modicon Premium Communication Modules: TSXETY4103, TSXETY5103 (All Versions)",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340 X80 Ethernet Communication Modules: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (All Versions), Modicon Premium Processors with integrated Ethernet (Copro): TSXP574634, TSXP575634, TSXP576634 (All Versions), Modicon Quantum Processors with Integrated Ethernet (Copro): 140CPU65xxxxx (All Versions), Modicon Quantum Communication Modules: 140NOE771x1, 140NOC78x00, 140NOC77101 (All Versions), Modicon Premium Communication Modules: TSXETY4103, TSXETY5103 (All Versions)"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 May 2026 20:16Current
7.3High risk
Vulners AI Score7.3
CVSS 25
CVSS 3.17.5
EPSS0.01449
SSVC
CWE-787
cve-2021-22788cwe-787out-of-bounds writedenial of servicemodicon m340modicon premiummodicon quantumhttp request vulnerability
67