What is the severity of CVE-2022-45788?

CVE-2022-45788 has a high severity level due to its potential for arbitrary code execution and denial of service.

How do I fix CVE-2022-45788?

To fix CVE-2022-45788, ensure you update to the latest version of Schneider Electric's EcoStruxure Control Expert or other affected products as recommended by the vendor.

What are the potential impacts of CVE-2022-45788?

The potential impacts of CVE-2022-45788 include arbitrary code execution, denial of service, and loss of confidentiality and integrity.

Which products are affected by CVE-2022-45788?

CVE-2022-45788 affects multiple products from Schneider Electric, including EcoStruxure Control Expert and various Modicon firmware versions.

Is CVE-2022-45788 being actively exploited?

As of now, there are no confirmed reports of CVE-2022-45788 being actively exploited in the wild.

Vulnerability/
CVE-2022-45788

critical

9.8

CWE

754

30/1/2023

5/2/2025

CVE-2022-45788

First published: Mon Jan 30 2023(Updated: )

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when a malicious project file is loaded onto the controller. Affected Products: EcoStruxure Control Expert (All Versions), EcoStruxure Process Expert (All Versions), Modicon M340 CPU - part numbers BMXP34* (All Versions), Modicon M580 CPU - part numbers BMEP* and BMEH* (All Versions), Modicon M580 CPU Safety - part numbers BMEP58*S and BMEH58*S (All Versions), Modicon Momentum Unity M1E Processor - 171CBU* (All Versions), Modicon MC80 - BMKC80 (All Versions), Legacy Modicon Quantum - 140CPU65* and Premium CPUs - TSXP57* (All Versions)

Credit: cybersecurity@se.com

Affected Software	Affected Version	How to fix
EcoStruxure Control Expert
Schneider Electric EcoStruxure Process Expert	<2021
Schneider Electric Modicon M340 BMXP341000 Firmware
Schneider Electric Modicon M340 BMXP341000
Schneider Electric Modicon M340 BMXP342000 Firmware
Schneider Electric Modicon M340 BMXP342000 Firmware
Schneider Electric Modicon M340 BMXP342010 Firmware
Schneider Electric Modicon M340 BMXP342010 Firmware
Schneider Electric Modicon M340 BMXP3420102 Firmware
Schneider Electric Modicon M340 BMXP3420102
Schneider Electric Modicon M340 BMXP342020 Firmware
Schneider Electric Modicon M340 BMXP342020
Schneider Electric Modicon M340 BMXP342020H Firmware
Schneider Electric Modicon M340 BMXP342020H
Schneider Electric Modicon M340 BMXP342030 Firmware
Schneider Electric Modicon M340 BMXP342030H
Schneider Electric Modicon M340 BMXP3420302 Firmware
Schneider Electric Modicon M340 BMXP3420302 Firmware
Schneider Electric Modicon M340 BMXP3420302H Firmware
Schneider Electric Modicon M340 BMXP3420302H Firmware
Schneider Electric Modicon M340 BMXP342030H Firmware
Schneider Electric Modicon M340 BMXP342030H
Schneider Electric Modicon M580 BMEH582040 Firmware
schneider-electric Modicon M580
Schneider Electric Modicon M580 Firmware
Modicon M580
Schneider Electric Modicon M580 Firmware
schneider-electric Modicon M580
Schneider Electric Modicon M580 BMEH584040 Firmware
schneider-electric Modicon M580 bmeh584040c
Schneider Electric Modicon M580 Firmware
schneider-electric Modicon M580 bmeh584040c firmware
Schneider Electric Modicon M580 BMEH584040S Firmware
Schneider Electric Modicon M580 BMEH584040S Firmware
Schneider Electric Modicon M580
Schneider Electric Modicon M580
Schneider Electric Modicon M580 Firmware
Schneider Electric Modicon M580
Schneider Electric Modicon M580 Firmware
Schneider Electric Modicon M580
Modicon M580
Schneider Electric Modicon M580 BMEP581020
schneider-electric Modicon M580 BMEP581020 firmware
schneider-electric Modicon M580 BMEP581020H firmware
Schneider Electric Modicon M580 BMEP582020 Firmware
Modicon M580
Schneider Electric Modicon M580 Firmware
Modicon M580
Schneider Electric Modicon M580 BMEP582040 Firmware
schneider-electric Modicon M580
schneider-electric Modicon M580 bmep582040h firmware
schneider-electric Modicon M580
Schneider Electric Modicon M580 BMEP582040 Firmware
Schneider Electric Modicon M580 BMEP582040S
Schneider Electric Modicon M580 BMEP583020 Firmware
Schneider Electric Modicon M580 BMEP583020
Schneider Electric Modicon M580 BMEP583040 Firmware
Schneider Electric Modicon M580 BMEP583040
Schneider Electric Modicon M580 BMEP584020 Firmware
Schneider Electric Modicon M580 BMEP584020 Firmware
Schneider Electric Modicon M580 BMEP584040 Firmware
Schneider Electric Modicon M580 BMEP584040 Firmware
Schneider Electric Modicon M580 BMEP584040S Firmware
Schneider Electric Modicon M580 BMEP584040S Firmware
schneider-electric Modicon M580 BMEP585040C Firmware
schneider-electric Modicon M580 BMEP585040C Firmware
Schneider Electric Modicon M580 BMEP585040C Firmware
schneider-electric Modicon M580 BMEP585040C Firmware
schneider-electric Modicon M580 bmep586040c firmware
schneider-electric modicon m580 bmep586040 firmware
Schneider Electric Modicon M580 BMEP585040C Firmware
schneider-electric Modicon M580 bmep586040c firmware
Schneider Electric Modicon Momentum 171CBU78090
Schneider Electric Modicon Momentum 171CBU78090
Schneider Electric Modicon Momentum 171CBU98090
Schneider Electric Modicon Momentum 171CBU98090
Schneider Electric Modicon Momentum 171CBU98091 Firmware
Schneider Electric Modicon Momentum 171CBU98091 Firmware
Schneider Electric Modicon MC80 BMKC8020301
schneider-electric modicon mc80 bmkc8020301 firmware
Modicon MC80 Firmware
Modicon MC80 Firmware
Modicon MC80 Firmware
Schneider Electric Modicon MC80
Schneider Electric Modicon Quantum Firmware
schneider-electric Modicon Quantum 140cpu65150 firmware
Schneider Electric Modicon Quantum 140CPU65160C Firmware
schneider-electric Modicon Quantum 140cpu65150c firmware
schneider-electric Modicon Quantum 140cpu65160 firmware
schneider-electric Modicon Quantum 140cpu65160c
schneider-electric Modicon Quantum 140cpu65160c
Schneider Electric Modicon Quantum 140CPU65160C Firmware
schneider-electric Modicon Premium TSXP57 1634m
schneider-electric Modicon Premium TSXP57 1634m firmware
schneider-electric Modicon Premium firmware
Schneider Electric Modicon Premium
schneider-electric Modicon Premium firmware
schneider-electric Modicon Premium TSXP57 2834m firmware
schneider-electric Modicon Premium firmware
schneider-electric Modicon Premium TSXP57 454m firmware
schneider-electric Modicon Premium TSXP57 4634m
schneider-electric Modicon Premium TSXP57 4634m firmware
schneider-electric Modicon Premium firmware
schneider-electric Modicon Premium TSXP57 554m firmware
schneider-electric Modicon Premium TSXP57 5634m
schneider-electric Modicon Premium TSXP57 5634m firmware
schneider-electric Modicon Premium firmware
Schneider Electric Modicon Premium

Remedy

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-05&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-010-05_Modicon_Controllers_Security_Notification.pdf

Never miss a vulnerability like this again

Reference Links

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-05&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-010-05_Modicon_Controllers_Security_Notification.pdf

Frequently Asked Questions

What is the severity of CVE-2022-45788?
CVE-2022-45788 has a high severity level due to its potential for arbitrary code execution and denial of service.
How do I fix CVE-2022-45788?
To fix CVE-2022-45788, ensure you update to the latest version of Schneider Electric's EcoStruxure Control Expert or other affected products as recommended by the vendor.
What are the potential impacts of CVE-2022-45788?
The potential impacts of CVE-2022-45788 include arbitrary code execution, denial of service, and loss of confidentiality and integrity.
Which products are affected by CVE-2022-45788?
CVE-2022-45788 affects multiple products from Schneider Electric, including EcoStruxure Control Expert and various Modicon firmware versions.
Is CVE-2022-45788 being actively exploited?
As of now, there are no confirmed reports of CVE-2022-45788 being actively exploited in the wild.

CVE-2022-45788

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-45788?

How do I fix CVE-2022-45788?

What are the potential impacts of CVE-2022-45788?

Which products are affected by CVE-2022-45788?

Is CVE-2022-45788 being actively exploited?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2022-45788?

How do I fix CVE-2022-45788?

What are the potential impacts of CVE-2022-45788?

Which products are affected by CVE-2022-45788?

Is CVE-2022-45788 being actively exploited?