Security Alerts

Your review has been sent successfully
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Schneider Electric Alert

172

Warning Date: 18 January, 2022

Severity Level ● High

Warning Number: 2022-4234

Target Sector: All

Description:

Schneider Electric has released a security alert to address several vulnerabilities in the following products:

  • Modicon M340 CPUs: BMXP34
  • Modicon Quantum CPUs with integrated Ethernet (Copro): 140CPU65
  • Modicon M340 ethernet modules:
    • BMXNOC0401
    • BMXNOE01
    • BMXNOR0200H
  • Modicon Quantum and Premium factory cast communication modules:
    • 140NOE77111
    • 140NOC78
    • TSXETY5103
    • TSXETY4103
Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Denial of service attack (DoS)
  • Cross-site request forgery (CSRF)
Best practice and Recommendations:

The CERT team encourages users to review Schneider Electric security advisory and apply the necessary mitigations and updates when available:

Last updated at 18 January, 2022

Rate the content

rate-icon
up icon