First published: Wed Apr 15 2020(Updated: )
**VERSION NOT SUPPORTED WHEN ASSIGNED** A vulnerability could cause TCM modules to reset when under high network load in TCM v10.4.x and in system v10.3.x. This vulnerability was discovered and remediated in version v10.5.x on August 13, 2009. TCMs from v10.5.x and on will no longer exhibit this behavior.
Credit: cybersecurity@se.com
Affected Software | Affected Version | How to fix |
---|---|---|
Schneider-electric Tricon Tcm 4351 Firmware | =10.3.x | |
Schneider-electric Tricon Tcm 4351 Firmware | =10.4.x | |
Schneider-electric Tricon Tcm 4351 | ||
Schneider-electric Tricon Tcm 4352 Firmware | =10.3.x | |
Schneider-electric Tricon Tcm 4352 Firmware | =10.4.x | |
Schneider-electric Tricon Tcm 4352 | ||
Schneider-electric Tricon Tcm 4351a Firmware | =10.3.x | |
Schneider-electric Tricon Tcm 4351a Firmware | =10.4.x | |
Schneider-electric Tricon Tcm 4351a | ||
Schneider-electric Tricon Tcm 4351b Firmware | =10.3.x | |
Schneider-electric Tricon Tcm 4351b Firmware | =10.4.x | |
Schneider-electric Tricon Tcm 4351b | ||
Schneider-electric Tricon Tcm 4352a Firmware | =10.3.x | |
Schneider-electric Tricon Tcm 4352a Firmware | =10.4.x | |
Schneider-electric Tricon Tcm 4352a | ||
Schneider-electric Tricon Tcm 4352b Firmware | =10.3.x | |
Schneider-electric Tricon Tcm 4352b Firmware | =10.4.x | |
Schneider-electric Tricon Tcm 4352b | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-7486 is a vulnerability that could cause TCM modules to reset when under high network load in TCM v10.4.x and in system v10.3.x.
CVE-2020-7486 has a severity rating of 7.5 (high).
CVE-2020-7486 affects TCM v10.4.x and system v10.3.x.
CVE-2020-7486 was discovered and fixed in version v10.5.x on August 13, 2009.
You can find more information about CVE-2020-7486 on the US-CERT advisory (ID: ICSA-20-205-01) and the Schneider Electric security bulletin (ID: SESB-2020-105-01).