Schneider Electric Modicon Exposure of Sensitive Information to an Unauthorized Actor (CVE-2021-22786)

A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU part numbers BMXP34 Versions prior to V3.30, Modicon M580 CPU par...

CVE-2021-22786

creationtimestamp| type| source ---|---|--- 2023-02-01 07:13:54+00:00| seen| https://t.me/cibsecurity/57242...

CVE-2021-22786

Schneider Electric CVE-2021-22786 is an information-exposure vulnerability in Modicon controllers over Modbus TCP. Affected products/versions: Modicon M340 CPU (BMXP34*) prior to V3.30, M580 CPU (BMEP*/BMEH*) prior to SV3.20, MC80 (BMKC80) prior to V1.6, M580 Safety (BMEP58*/BMEH58*) all versions...

CVE-2021-22786

A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU part numbers BMXP34 Versions prior to V3.30, Modicon M580 CPU par...

CVE-2021-22786

A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU part numbers BMXP34 Versions prior to V3.30, Modicon M580 CPU par...