Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.TENABLE_OT_SCHNEIDER_CVE-2018-7823.NASLHistoryMar 01, 2023 - 12:00 a.m.
Schneider Electric Modicon Remote Launch (CVE-2018-7823)
2023-03-0100:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
schneider electric
modicon m221
firmware
vulnerability
somachine basic
remote launch
ethernet message
A Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to firmware V1.10.0.0) which could cause remote launch of SoMachine Basic when sending crafted ethernet message.
This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(500860);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/24");
script_cve_id("CVE-2018-7823");
script_name(english:"Schneider Electric Modicon Remote Launch (CVE-2018-7823)");
script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
script_set_attribute(attribute:"description", value:
"A Environment (CWE-2) vulnerability exists in SoMachine Basic, all
versions, and Modicon M221(all references, all versions prior to
firmware V1.10.0.0) which could cause remote launch of SoMachine Basic
when sending crafted ethernet message.
This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
# https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2019-045-01
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?76aba565");
script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-7823");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/05/22");
script_set_attribute(attribute:"patch_publication_date", value:"2019/05/22");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/03/01");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/o:schneider-electric:modicon_m221_series_firmware");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Tenable.ot");
script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("tenable_ot_api_integration.nasl");
script_require_keys("Tenable.ot/Schneider");
exit(0);
}
include('tenable_ot_cve_funcs.inc');
get_kb_item_or_exit('Tenable.ot/Schneider');
var asset = tenable_ot::assets::get(vendor:'Schneider');
var vuln_cpes = {
"cpe:/o:schneider-electric:modicon_m221_series_firmware" :
{"versionEndExcluding" : "1.10.0.0", "family" : "ModiconM221"}
};
tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_WARNING);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| schneider-electric | modicon_m221_series_firmware | cpe:/o:schneider-electric:modicon_m221_series_firmware |
Related
prion
prion
Code injection
2019-05-22 20:29:00
cvelist
cvelist
CVE-2018-7823
2019-05-22 19:37:45
cve
cve
CVE-2018-7823
2019-05-22 20:29:01
nessus
nessus
Schneider-electric Somachine Improper Input Validation
2019-11-08 00:00:00
nvd
nvd
CVE-2018-7823
2019-05-22 20:29:01
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.7%
Related for TENABLE_OT_SCHNEIDER_CVE-2018-7823.NASL