Lucene search

CVE-2022-45789

🗓️ 31 Jan 2023 00:00:00Reported by schneiderType

Authentication Bypass by Capture-replay vulnerability in Modbus controller

Reporter	Title	Published	Views	Family All 8
Tenable Nessus	Schneider Electric EcoStruxure Control Expert, Process Expert, Modicon M340, M580 and M580 CPU Authentication Bypass By Capture-Replay (CVE-2022-45789)	9 Mar 202300:00	–	nessus
RedhatCVE	CVE-2022-45789	5 Feb 202522:29	–	redhatcve
Prion	Authentication flaw	31 Jan 202306:15	–	prion
Vulnrichment	CVE-2022-45789	31 Jan 202300:00	–	vulnrichment
ICS	Schneider Electric EcoStruxure Control Expert, Process Expert, Modicon M340, M580 and M580 CPU	15 Aug 202306:00	–	ics
CVE	CVE-2022-45789	31 Jan 202306:15	–	cve
NVD	CVE-2022-45789	31 Jan 202306:15	–	nvd
The Hacker News	Researchers Warn of Critical Security Bugs in Schneider Electric Modicon PLCs	16 Feb 202313:18	–	thn

[
  {
    "defaultStatus": "unaffected",
    "product": "EcoStruxure Control Expert ",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "EcoStruxure Process Expert",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Modicon M340 CPU (part numbers BMXP34*)",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Modicon M580 CPU (part numbers BMEP* and BMEH*) ",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Modicon M580 CPU Safety (part numbers BMEP58*S and BMEH58*S)",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Jan 2023 00:00Current

9.6High risk

Vulners AI Score9.6

CVSS38.1

EPSS0.00049

CWE-294