Tofino Xenon Security Appliance Firmware Security Vulnerabilities and Issues — Tofino Xenon Security Appliance Firmware CVE List

Lucene search

BeldenTofino Xenon Security Appliance Firmware

9 matches found

CVE•added 2017/11/20 3:29 p.m.•53 views

CVE-2017-11400

An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. An incomplete firmware signature allows a local attacker to upgrade the equipment (kernel, file system) with unsigned, attacker-controlled, data. This occurs because the appliance_config file is si...

7.2CVSS6.5AI score0.00004EPSS

CVE•added 2017/11/20 3:29 p.m.•45 views

CVE-2017-11401

An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. Improper handling of the mbap.length field of ModBus packets in the ModBus DPI filter allows an attacker to send malformed/crafted packets to a protected asset, bypassing function code filtering.

9.8CVSS7.8AI score0.00195EPSS

CVE•added 2022/04/03 10:15 p.m.•40 views

CVE-2021-30065

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, crafted ModBus packets can bypass the ModBus enforcer. NOTE: this issue exists because of an incomplete fix of CVE-2017-11401.

7.5CVSS8.8AI score0.00195EPSS

CVE•added 2022/04/03 11:15 p.m.•40 views

CVE-2021-30066

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an arbitrary firmware image can be loaded because firmware signature verification (for a USB stick) can be bypassed. NOTE: this issue exists because of an inco...

7.2CVSS6.7AI score0.00004EPSS

CVE•added 2022/04/03 10:15 p.m.•37 views

CVE-2021-30064

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an SSH login can succeed with hardcoded default credentials (if the device is in the uncommissioned state).

9.8CVSS9.3AI score0.00057EPSS

CVE•added 2022/04/03 10:15 p.m.•35 views

CVE-2021-30063

On Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 before 03.23 and Belden Tofino Xenon Security Appliance, crafted OPC packets can cause an OPC enforcer denial of service.

7.5CVSS7.4AI score0.00067EPSS

CVE•added 2022/04/03 10:15 p.m.•34 views

CVE-2021-30061

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick.

7.2CVSS6.7AI score0.00008EPSS

CVE•added 2022/04/03 10:15 p.m.•34 views

CVE-2021-30062

On Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 before 03.23 and Belden Tofino Xenon Security Appliance, crafted OPC packets can bypass the OPC enforcer.

7.5CVSS7.5AI score0.00035EPSS

CVE•added 2017/11/20 3:29 p.m.•33 views

CVE-2017-11402

An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. Design flaws in OPC classic and in custom netfilter modules allow an attacker to remotely activate rules on the firewall and to connect to any TCP port of a protected asset, thus bypassing the fire...

10CVSS9.3AI score0.00089EPSS