EUVD-2022-48644

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

CWE-754 vulnerability in multiple EcoStruxure and Modicon products could lead to code execution risks

Reporter	Title	Published	Views	Family All 16
ATTACKERKB	CVE-2022-45788	30 Jan 202313:15	–	attackerkb
BDU FSTEC	The vulnerability of Schneider Electric’s programmable logic controllers’ microprogramming software lies in the insufficient testing of unusual or exceptional states. This allows a intruder to execute arbitrary code or cause malfunctions during maintenance.	20 Jan 202300:00	–	bdu_fstec
Circl	CVE-2022-45788	30 Jan 202316:37	–	circl
CNNVD	Schneider Electric EcoStruxure Control Expert 代码问题漏洞	30 Jan 202300:00	–	cnnvd
CVE	CVE-2022-45788	30 Jan 202300:00	–	cve
Cvelist	CVE-2022-45788	30 Jan 202300:00	–	cvelist
ICS	Schneider Electric EcoStruxure Products, Modicon PLCs, and Programmable Automation Controllers	20 Jul 202306:00	–	ics
NCSC	Vulnerabilities fixed in Schneider Electric EcoStruxure and Modicon products	31 Jan 202300:00	–	ncsc
NVD	CVE-2022-45788	30 Jan 202313:15	–	nvd
Prion	Design/Logic Flaw	30 Jan 202313:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "f7688216-a072-3900-a1f8-b01169905ee4",
        "vendor": {
          "name": "Schneider Electric"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "19a22558-1051-33db-8913-0cbfad7ed5dd",
        "product": {
          "name": "EcoStruxure Process Expert"
        },
        "product_version": "All Versions"
      },
      {
        "id": "25995d28-99e7-3e19-8b72-537a266f2355",
        "product": {
          "name": "Modicon MC80 (BMKC80)"
        },
        "product_version": "All Versions"
      },
      {
        "id": "4d02434d-79a2-324c-b06d-f2a9e241fabe",
        "product": {
          "name": "Legacy Modicon Quantum (140CPU65*) and Premium CPUs (TSXP57*)"
        },
        "product_version": "All Versions"
      },
      {
        "id": "5c0a3424-bf0c-3125-b270-1ade8f68177f",
        "product": {
          "name": "EcoStruxure Control Expert"
        },
        "product_version": "All Versions"
      },
      {
        "id": "a697120b-0371-3a18-a8a4-4551a6af88be",
        "product": {
          "name": "Modicon M580 CPU Safety (part numbers BMEP58*S and BMEH58*S)"
        },
        "product_version": "All Versions"
      },
      {
        "id": "c845ccc2-4eba-32f9-8515-cbde65adb2ca",
        "product": {
          "name": "Modicon Momentum Unity M1E Processor (171CBU*)"
        },
        "product_version": "All Versions"
      },
      {
        "id": "d511218f-b7c7-3354-92b0-cada906f5e15",
        "product": {
          "name": "Modicon M580 CPU (part numbers BMEP* and BMEH*)"
        },
        "product_version": "All Versions"
      },
      {
        "id": "df2f9305-5fad-3b6b-bb2a-da725093ef5e",
        "product": {
          "name": "Modicon M340 CPU (part numbers BMXP34*)"
        },
        "product_version": "All Versions"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

03 Oct 2025 20:07Current

9.1High risk

Vulners AI Score9.1

CVSS 3.17.5 - 9.8

EPSS0.01163

SSVC