CVE-2022-0222
First published: Tue Nov 22 2022(Updated: )
A CWE-269: Improper Privilege Management vulnerability exists that could cause a denial of service of the Ethernet communication of the controller when sending a specific request over SNMP. Affected products: Modicon M340 CPUs(BMXP34* versions prior to V3.40), Modicon M340 X80 Ethernet Communication modules:BMXNOE0100 (H), BMXNOE0110 (H), BMXNOR0200H RTU(BMXNOE* all versions)(BMXNOR* versions prior to v1.7 IR24)
Credit: cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider Electric Modicon M340 BMXP341000 Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP341000 | ||
| Schneider Electric Modicon M340 BMXP342000 Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP342000 Firmware | ||
| Schneider Electric Modicon M340 BMXP342010 Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP342010 Firmware | ||
| Schneider Electric Modicon M340 BMXP3420102 Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP3420102 | ||
| Schneider Electric Modicon M340 BMXP342020 Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP342020 | ||
| Schneider Electric Modicon M340 BMXP342020H Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP342020H | ||
| Schneider Electric Modicon M340 BMXP342030 Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP342030H | ||
| Schneider Electric Modicon M340 BMXP3420302 Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP3420302 Firmware | ||
| Schneider Electric Modicon M340 BMXP3420302H Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP3420302H Firmware | ||
| Schneider Electric Modicon M340 BMXP342030H Firmware | <3.50 | |
| Schneider Electric Modicon M340 BMXP342030H | ||
| schneider-electric Modicon M340 BMXNOE0100 | ||
| schneider-electric Modicon M340 BMXNOE0100 firmware | ||
| Schneider Electric Modicon M340 BMXNOE0110 Firmware | ||
| Schneider Electric Modicon M340 BMXNOE0110 Firmware | ||
| Schneider Electric Modicon M340 BMX NOE 0110H | ||
| schneider-electric Modicon M340 | ||
| Schneider Electric Modicon M340 BMX NOR 0200H firmware | ||
| Schneider Electric Modicon M340 BMXNOR0200H |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-0222.
What is the severity of CVE-2022-0222?
The severity of CVE-2022-0222 is high with a severity value of 7.5.
What is the CWE ID of CVE-2022-0222?
The CWE ID of CVE-2022-0222 is CWE-269.
Which products are affected by CVE-2022-0222?
The affected products are Modicon M340 CPUs (BMXP34* versions prior to V3.40) and Modicon M340 X80 Ethernet Communication.
How can I fix CVE-2022-0222?
To fix CVE-2022-0222, update the Modicon M340 CPUs to version V3.40 or higher.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/schneider-electric
- canonical/schneider electric modicon m340 bmxp341000 firmware
- canonical/schneider electric modicon m340 bmxp341000
- canonical/schneider electric modicon m340 bmxp342000 firmware
- canonical/schneider electric modicon m340 bmxp342010 firmware
- canonical/schneider electric modicon m340 bmxp3420102 firmware
- canonical/schneider electric modicon m340 bmxp3420102
- canonical/schneider electric modicon m340 bmxp342020 firmware
- canonical/schneider electric modicon m340 bmxp342020
- canonical/schneider electric modicon m340 bmxp342020h firmware
- canonical/schneider electric modicon m340 bmxp342020h
- canonical/schneider electric modicon m340 bmxp342030 firmware
- canonical/schneider electric modicon m340 bmxp342030h
- canonical/schneider electric modicon m340 bmxp3420302 firmware
- canonical/schneider electric modicon m340 bmxp3420302h firmware
- canonical/schneider electric modicon m340 bmxp342030h firmware
- canonical/schneider-electric modicon m340 bmxnoe0100
- canonical/schneider-electric modicon m340 bmxnoe0100 firmware
- canonical/schneider electric modicon m340 bmxnoe0110 firmware
- canonical/schneider electric modicon m340 bmx noe 0110h
- canonical/schneider-electric modicon m340
- canonical/schneider electric modicon m340 bmx nor 0200h firmware
- canonical/schneider electric modicon m340 bmxnor0200h