CVE-2022-37300
First published: Mon Sep 12 2022(Updated: )
A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists that could cause unauthorized access in read and write mode to the controller when communicating over Modbus. Affected Products: EcoStruxure Control Expert Including all Unity Pro versions (former name of EcoStruxure Control Expert) (V15.0 SP1 and prior), EcoStruxure Process Expert, Including all versions of EcoStruxure Hybrid DCS (former name of EcoStruxure Process Expert) (V2021 and prior), Modicon M340 CPU (part numbers BMXP34*) (V3.40 and prior), Modicon M580 CPU (part numbers BMEP* and BMEH*) (V3.20 and prior).
Credit: cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider-electric Ecostruxure Control Expert | <15.1 | |
| Schneider-electric Ecostruxure Process Expert | <=2021 | |
| Schneider-electric Modicon M340 Bmxp341000 Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp341000 | ||
| Schneider-electric Modicon M340 Bmxp342000 Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp342000 | ||
| Schneider-electric Modicon M340 Bmxp342010 Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp342010 | ||
| Schneider-electric Modicon M340 Bmxp3420102 Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp3420102 | ||
| Schneider-electric Modicon M340 Bmxp342020 Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp342020 | ||
| Schneider-electric Modicon M340 Bmxp342020h Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp342020h | ||
| Schneider-electric Modicon M340 Bmxp342030 Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp342030 | ||
| Schneider-electric Modicon M340 Bmxp3420302 Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp3420302 | ||
| Schneider-electric Modicon M340 Bmxp3420302h Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp3420302h | ||
| Schneider-electric Modicon M340 Bmxp342030h Firmware | <3.50 | |
| Schneider-electric Modicon M340 Bmxp342030h | ||
| Schneider-electric Modicon M580 Bmeh582040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh582040 | ||
| Schneider-electric Modicon M580 Bmeh582040c Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh582040c | ||
| Schneider-electric Modicon M580 Bmeh582040s Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh582040s | ||
| Schneider-electric Modicon M580 Bmeh584040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh584040 | ||
| Schneider-electric Modicon M580 Bmeh584040c Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh584040c | ||
| Schneider-electric Modicon M580 Bmeh584040s Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh584040s | ||
| Schneider-electric Modicon M580 Bmeh586040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh586040 | ||
| Schneider-electric Modicon M580 Bmeh586040c Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh586040c | ||
| Schneider-electric Modicon M580 Bmeh586040s Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmeh586040s | ||
| Schneider-electric Modicon M580 Bmep581020 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep581020 | ||
| Schneider-electric Modicon M580 Bmep581020h Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep581020h | ||
| Schneider-electric Modicon M580 Bmep582020 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep582020 | ||
| Schneider-electric Modicon M580 Bmep582020h Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep582020h | ||
| Schneider-electric Modicon M580 Bmep582040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep582040 | ||
| Schneider-electric Modicon M580 Bmep582040h Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep582040h | ||
| Schneider-electric Modicon M580 Bmep583020 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep583020 | ||
| Schneider-electric Modicon M580 Bmep583040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep583040 | ||
| Schneider-electric Modicon M580 Bmep584020 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep584020 | ||
| Schneider-electric Modicon M580 Bmep584040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep584040 | ||
| Schneider-electric Modicon M580 Bmep584040s Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep584040s | ||
| Schneider-electric Modicon M580 Bmep585040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep585040 | ||
| Schneider-electric Modicon M580 Bmep585040c Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep585040c | ||
| Schneider-electric Modicon M580 Bmep586040 Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep586040 | ||
| Schneider-electric Modicon M580 Bmep586040c Firmware | <4.02 | |
| Schneider-electric Modicon M580 Bmep586040c |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/schneider-electric
- canonical/schneider-electric ecostruxure control expert
- canonical/schneider-electric ecostruxure process expert
- version/schneider-electric ecostruxure process expert/2021
- canonical/schneider-electric modicon m340 bmxp341000 firmware
- canonical/schneider-electric modicon m340 bmxp341000
- canonical/schneider-electric modicon m340 bmxp342000 firmware
- canonical/schneider-electric modicon m340 bmxp342000
- canonical/schneider-electric modicon m340 bmxp342010 firmware
- canonical/schneider-electric modicon m340 bmxp342010
- canonical/schneider-electric modicon m340 bmxp3420102 firmware
- canonical/schneider-electric modicon m340 bmxp3420102
- canonical/schneider-electric modicon m340 bmxp342020 firmware
- canonical/schneider-electric modicon m340 bmxp342020
- canonical/schneider-electric modicon m340 bmxp342020h firmware
- canonical/schneider-electric modicon m340 bmxp342020h
- canonical/schneider-electric modicon m340 bmxp342030 firmware
- canonical/schneider-electric modicon m340 bmxp342030
- canonical/schneider-electric modicon m340 bmxp3420302 firmware
- canonical/schneider-electric modicon m340 bmxp3420302
- canonical/schneider-electric modicon m340 bmxp3420302h firmware
- canonical/schneider-electric modicon m340 bmxp3420302h
- canonical/schneider-electric modicon m340 bmxp342030h firmware
- canonical/schneider-electric modicon m340 bmxp342030h
- canonical/schneider-electric modicon m580 bmeh582040 firmware
- canonical/schneider-electric modicon m580 bmeh582040
- canonical/schneider-electric modicon m580 bmeh582040c firmware
- canonical/schneider-electric modicon m580 bmeh582040c
- canonical/schneider-electric modicon m580 bmeh582040s firmware
- canonical/schneider-electric modicon m580 bmeh582040s
- canonical/schneider-electric modicon m580 bmeh584040 firmware
- canonical/schneider-electric modicon m580 bmeh584040
- canonical/schneider-electric modicon m580 bmeh584040c firmware
- canonical/schneider-electric modicon m580 bmeh584040c
- canonical/schneider-electric modicon m580 bmeh584040s firmware
- canonical/schneider-electric modicon m580 bmeh584040s
- canonical/schneider-electric modicon m580 bmeh586040 firmware
- canonical/schneider-electric modicon m580 bmeh586040
- canonical/schneider-electric modicon m580 bmeh586040c firmware
- canonical/schneider-electric modicon m580 bmeh586040c
- canonical/schneider-electric modicon m580 bmeh586040s firmware
- canonical/schneider-electric modicon m580 bmeh586040s
- canonical/schneider-electric modicon m580 bmep581020 firmware
- canonical/schneider-electric modicon m580 bmep581020
- canonical/schneider-electric modicon m580 bmep581020h firmware
- canonical/schneider-electric modicon m580 bmep581020h
- canonical/schneider-electric modicon m580 bmep582020 firmware
- canonical/schneider-electric modicon m580 bmep582020
- canonical/schneider-electric modicon m580 bmep582020h firmware
- canonical/schneider-electric modicon m580 bmep582020h
- canonical/schneider-electric modicon m580 bmep582040 firmware
- canonical/schneider-electric modicon m580 bmep582040
- canonical/schneider-electric modicon m580 bmep582040h firmware
- canonical/schneider-electric modicon m580 bmep582040h
- canonical/schneider-electric modicon m580 bmep583020 firmware
- canonical/schneider-electric modicon m580 bmep583020
- canonical/schneider-electric modicon m580 bmep583040 firmware
- canonical/schneider-electric modicon m580 bmep583040
- canonical/schneider-electric modicon m580 bmep584020 firmware
- canonical/schneider-electric modicon m580 bmep584020
- canonical/schneider-electric modicon m580 bmep584040 firmware
- canonical/schneider-electric modicon m580 bmep584040
- canonical/schneider-electric modicon m580 bmep584040s firmware
- canonical/schneider-electric modicon m580 bmep584040s
- canonical/schneider-electric modicon m580 bmep585040 firmware
- canonical/schneider-electric modicon m580 bmep585040
- canonical/schneider-electric modicon m580 bmep585040c firmware
- canonical/schneider-electric modicon m580 bmep585040c
- canonical/schneider-electric modicon m580 bmep586040 firmware
- canonical/schneider-electric modicon m580 bmep586040
- canonical/schneider-electric modicon m580 bmep586040c firmware
- canonical/schneider-electric modicon m580 bmep586040c