CVE-2017-6026
Last modified
CVE-2017-6026 is a critical-severity vulnerability rated 9.1/10 on the CVSS scale. A Use of Insufficiently Random Values issue was discovered in Schneider Electric Modicon PLCs Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The session numbers generated by the web application are lacking randomization and are shared between several users. EPSS estimates a 31.82% chance of exploitation in the next 30 days.
Description
A Use of Insufficiently Random Values issue was discovered in Schneider Electric Modicon PLCs Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The session numbers generated by the web application are lacking randomization and are shared between several users. This may allow a current session to be compromised.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Schneider-Electric | Modicon M251 Firmware | <= 4.0.3.20 |
| Schneider-Electric | Modicon M241 Firmware | <= 4.0.3.20 |
References
- http://www.securityfocus.com/bid/97254Third Party Advisory, VDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02Third Party Advisory, US Government Resource
- https://www.exploit-db.com/exploits/45918/Exploit, Third Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/97254Third Party Advisory, VDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02Third Party Advisory, US Government Resource
- https://www.exploit-db.com/exploits/45918/Exploit, Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-6026?
How severe is CVE-2017-6026?
How do I fix CVE-2017-6026?
Are you affected by CVE-2017-6026?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST