CVE-2021-22787

Severity CVSS v4.0:

Pending analysis

Type:

CWE-20 Input Validation

Publication date:

11/02/2022

Last modified:

10/04/2024

Description

A CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of the device when an attacker sends a specially crafted HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340 X80 Ethernet Communication Modules: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (All Versions), Modicon Premium Processors with integrated Ethernet (Copro): TSXP574634, TSXP575634, TSXP576634 (All Versions), Modicon Quantum Processors with Integrated Ethernet (Copro): 140CPU65xxxxx (All Versions), Modicon Quantum Communication Modules: 140NOE771x1, 140NOC78x00, 140NOC77101 (All Versions), Modicon Premium Communication Modules: TSXETY4103, TSXETY5103 (All Versions)

Impact

Vector 3.x

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS v3.1 Severity and Metrics:

Base Score: 7.50 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): None
Integrity (I): None
Availability (A): High

Base Score 3.x

7.50

Severity 3.x

HIGH

Vector 2.0

AV:N/AC:L/Au:N/C:N/I:N/A:P CVSS v2.0 Severity and Metrics:

Base Score: 5.00 MEDIUM
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Attack Vector (AV): Network
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): None
Integrity (I): None
Availability (A): Physical

Base Score 2.0

5.00

Severity 2.0

MEDIUM

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware::::::::		3.40 (excluding)
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:::::::*
cpe:2.3:o:schneider-electric:bmxnoe0100_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnoe0100:-:::::::*
cpe:2.3:o:schneider-electric:bmxnoe0110_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnoe0110:-:::::::*
cpe:2.3:o:schneider-electric:bmxnoc0401_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnoc0401:-:::::::*
cpe:2.3:o:schneider-electric:bmxnor0200h_rtu_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnor0200h_rtu:-:::::::*
cpe:2.3:o:schneider-electric:tsxp574634_firmware::::::::
cpe:2.3:h:schneider-electric:tsxp574634:-:::::::*
cpe:2.3:o:schneider-electric:tsxp575634_firmware::::::::
cpe:2.3:h:schneider-electric:tsxp575634:-:::::::*
cpe:2.3:o:schneider-electric:tsxp576634_firmware::::::::

To consult the complete list of CPE names with products and versions, see this page

References to Advisories, Solutions, and Tools

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-257-02

CPE	From	Up to
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware::::::::		3.40 (excluding)
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:::::::*
cpe:2.3:o:schneider-electric:bmxnoe0100_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnoe0100:-:::::::*
cpe:2.3:o:schneider-electric:bmxnoe0110_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnoe0110:-:::::::*
cpe:2.3:o:schneider-electric:bmxnoc0401_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnoc0401:-:::::::*
cpe:2.3:o:schneider-electric:bmxnor0200h_rtu_firmware::::::::
cpe:2.3:h:schneider-electric:bmxnor0200h_rtu:-:::::::*
cpe:2.3:o:schneider-electric:tsxp574634_firmware::::::::
cpe:2.3:h:schneider-electric:tsxp574634:-:::::::*
cpe:2.3:o:schneider-electric:tsxp575634_firmware::::::::
cpe:2.3:h:schneider-electric:tsxp575634:-:::::::*
cpe:2.3:o:schneider-electric:tsxp576634_firmware::::::::