Lucene search
HistoryNov 22, 2022 - 12:15 p.m.
CVE-2022-37301
cve-2022-37301
cwe-191
integer underflow
modbus tcp
denial of service
memory access violations
modicon m340
modicon m580
modicon quantum
modicon premium
modicon momentum mdi
modicon mc80
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
36.6%
A CWE-191: Integer Underflow (Wrap or Wraparound) vulnerability exists that could cause a denial of service of the controller due to memory access violations when using the Modbus TCP protocol. Affected products: Modicon M340 CPU (part numbers BMXP34*)(V3.40 and prior), Modicon M580 CPU (part numbers BMEP* and BMEH*)(V3.22 and prior), Legacy Modicon Quantum/Premium(All Versions), Modicon Momentum MDI (171CBU*)(All Versions), Modicon MC80 (BMKC80)(V1.7 and prior)
Affected configurations
Node
schneider-electricmodicon_m340_bmx_p34-2010Match-
schneider-electricmodicon_m340_bmx_p34-2010_firmwareRange<3.50
Node
schneider-electricmodicon_m340_bmx_p34-2030Match-
schneider-electricmodicon_m340_bmx_p34-2030_firmwareRange<3.50
Node
schneider-electricmodicon_m580_bmeh582040Match-
schneider-electricmodicon_m580_bmeh582040_firmwareRange<4.01
Node
schneider-electricmodicon_m580_bmeh582040cMatch-
schneider-electricmodicon_m580_bmeh582040c_firmwareRange<4.01
Node
schneider-electricmodicon_m580_bmeh582040sMatch-
schneider-electricmodicon_m580_bmeh582040s_firmwareRange<4.01
Node
schneider-electricmodicon_m580_bmeh584040Match-
schneider-electricmodicon_m580_bmeh584040_firmwareRange<4.01
Node
schneider-electricmodicon_m580_bmeh584040cMatch-
schneider-electricmodicon_m580_bmeh584040c_firmwareRange<4.01
Node
schneider-electricmodicon_m580_bmeh584040sMatch-
schneider-electricmodicon_m580_bmeh584040s_firmwareRange<4.01
Node
schneider-electricmodicon_m580_bmeh586040_firmwareRange<4.01
schneider-electricmodicon_m580_bmeh586040Match-
Node
schneider-electricmodicon_m580_bmeh586040c_firmwareRange<4.01
schneider-electricmodicon_m580_bmeh586040cMatch-
Node
schneider-electricmodicon_m580_bmeh586040s_firmwareRange<4.01
schneider-electricmodicon_m580_bmeh586040sMatch-
Node
schneider-electricmodicon_m580_bmep581020_firmwareRange<4.01
schneider-electricmodicon_m580_bmep581020Match-
Node
schneider-electricmodicon_m580_bmep581020h_firmwareRange<4.01
schneider-electricmodicon_m580_bmep581020hMatch-
Node
schneider-electricmodicon_m580_bmep582020_firmwareRange<4.01
schneider-electricmodicon_m580_bmep582020Match-
Node
schneider-electricmodicon_m580_bmep582020h_firmwareRange<4.01
schneider-electricmodicon_m580_bmep582020hMatch-
Node
schneider-electricmodicon_m580_bmep582040_firmwareRange<4.01
schneider-electricmodicon_m580_bmep582040Match-
Node
schneider-electricmodicon_m580_bmep582040h_firmwareRange<4.01
schneider-electricmodicon_m580_bmep582040hMatch-
Node
schneider-electricmodicon_m580_bmep582040s_firmwareRange<4.01
schneider-electricmodicon_m580_bmep582040sMatch-
Node
schneider-electricmodicon_m580_bmep583020_firmwareRange<4.01
schneider-electricmodicon_m580_bmep583020Match-
Node
schneider-electricmodicon_m580_bmep583040_firmwareRange<4.01
schneider-electricmodicon_m580_bmep583040Match-
Node
schneider-electricmodicon_m580_bmep584020_firmwareRange<4.01
schneider-electricmodicon_m580_bmep584020Match-
Node
schneider-electricmodicon_m580_bmep584040_firmwareRange<4.01
schneider-electricmodicon_m580_bmep584040Match-
Node
schneider-electricmodicon_m580_bmep584040s_firmwareRange<4.01
schneider-electricmodicon_m580_bmep584040sMatch-
Node
schneider-electricmodicon_m580_bmep585040_firmwareRange<4.01
schneider-electricmodicon_m580_bmep585040Match-
Node
schneider-electricmodicon_m580_bmep585040c_firmwareRange<4.01
schneider-electricmodicon_m580_bmep585040cMatch-
Node
schneider-electricmodicon_m580_bmep586040_firmwareRange<4.01
schneider-electricmodicon_m580_bmep586040Match-
Node
schneider-electricmodicon_m580_bmep586040c_firmwareRange<4.01
schneider-electricmodicon_m580_bmep586040cMatch-
Node
schneider-electricmodicon_mc80_bmkc8020301_firmwareRange<1.8
schneider-electricmodicon_mc80_bmkc8020301Match-
Node
schneider-electricmodicon_mc80_bmkc8020310_firmwareRange<1.8
schneider-electricmodicon_mc80_bmkc8020310Match-
Node
schneider-electricmodicon_mc80_bmkc8030311_firmwareRange<1.8
schneider-electricmodicon_mc80_bmkc8030311Match-
Node
schneider-electricmodicon_momentum_171cbu78090_firmwareMatch-
schneider-electricmodicon_momentum_171cbu78090Match-
Node
schneider-electricmodicon_momentum_171cbu98090_firmwareMatch-
schneider-electricmodicon_momentum_171cbu98090Match-
Node
schneider-electricmodicon_momentum_171cbu98091_firmwareMatch-
schneider-electricmodicon_momentum_171cbu98091Match-
Node
schneider-electricmodicon_premium_tsxp57_1634m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_1634mMatch-
Node
schneider-electricmodicon_premium_tsxp57_2634m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_2634mMatch-
Node
schneider-electricmodicon_premium_tsxp57_2834m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_2834mMatch-
Node
schneider-electricmodicon_premium_tsxp57_454m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_454mMatch-
Node
schneider-electricmodicon_premium_tsxp57_4634m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_4634mMatch-
Node
schneider-electricmodicon_premium_tsxp57_554m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_554mMatch-
Node
schneider-electricmodicon_premium_tsxp57_5634m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_5634mMatch-
Node
schneider-electricmodicon_premium_tsxp57_6634m_firmwareMatch-
schneider-electricmodicon_premium_tsxp57_6634mMatch-
Node
schneider-electricmodicon_quantum_140cpu65150_firmwareMatch-
schneider-electricmodicon_quantum_140cpu65150Match-
Node
schneider-electricmodicon_quantum_140cpu65150c_firmwareMatch-
schneider-electricmodicon_quantum_140cpu65150cMatch-
Node
schneider-electricmodicon_quantum_140cpu65160_firmwareMatch-
schneider-electricmodicon_quantum_140cpu65160Match-
Node
schneider-electricmodicon_quantum_140cpu65160c_firmwareMatch-
schneider-electricmodicon_quantum_140cpu65160cMatch-
Node
schneider-electricmodicon_quantum_140noc78100_firmwareMatch-
schneider-electricmodicon_quantum_140noc78100Match-
Node
schneider-electricmodicon_quantum_140noe77101_firmwareMatch-
schneider-electricmodicon_quantum_140noe77101Match-
Node
schneider-electricmodicon_quantum_140noe77111_firmwareMatch-
schneider-electricmodicon_quantum_140noe77111Match-
CNA Affected
[
{
"vendor": "Schneider Electric",
"product": "Modicon M340 CPU (part numbers BMXP34*)",
"versions": [
{
"version": "V",
"status": "affected",
"lessThanOrEqual": "3.40",
"versionType": "custom"
}
]
},
{
"vendor": "Schneider Electric",
"product": "Modicon M580 CPU (part numbers BMEP* and BMEH*) ",
"versions": [
{
"version": "V",
"status": "affected",
"lessThanOrEqual": "3.22",
"versionType": "custom"
}
]
},
{
"vendor": "Schneider Electric",
"product": "Legacy Modicon Quantum/Premium",
"versions": [
{
"version": "All Versions",
"status": "affected"
}
]
},
{
"vendor": "Schneider Electric",
"product": "Modicon Momentum MDI (171CBU*)",
"versions": [
{
"version": "All Versions",
"status": "affected"
}
]
},
{
"vendor": "Schneider Electric",
"product": "Modicon MC80 (BMKC80)",
"versions": [
{
"version": "V",
"status": "affected",
"lessThanOrEqual": "1.7",
"versionType": "custom"
}
]
}
]Social References
More
Related
cvelist
cvelist
CVE-2022-37301
2022-11-22 00:00:00
cnvd
cnvd
Schneider Electric product numerical error vulnerability
2022-11-24 00:00:00
prion
prion
Integer overflow
2022-11-22 12:15:00
nessus
nessus
Schneider Electric Modicon Integer Underflow (CVE-2022-37301)
2022-12-07 00:00:00
nvd
nvd
CVE-2022-37301
2022-11-22 12:15:09
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
36.6%
Related for CVE-2022-37301