Strix
26.1K

CVE-2021-22786

HIGHCVSS 7.5/10EPSS 0.62%

Last modified

CVE-2021-22786 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU (part numbers BMXP34*) (Versions prior to V3.30), Modicon M580 CPU (part numbers BMEP* and BMEH*) (Versions prior to SV3.20), Modicon MC80 (BMKC80) (Versions prior to V1.6), Modicon M580 CPU Safety (part numbers BMEP58*S and BMEH58*S) (All Versions), Modicon Momentum MDI (171CBU*) (Versions prior to V2.3), Legacy Modicon Quantum (All Versions). EPSS estimates a 0.62% chance of exploitation in the next 30 days.

Description

A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU (part numbers BMXP34*) (Versions prior to V3.30), Modicon M580 CPU (part numbers BMEP* and BMEH*) (Versions prior to SV3.20), Modicon MC80 (BMKC80) (Versions prior to V1.6), Modicon M580 CPU Safety (part numbers BMEP58*S and BMEH58*S) (All Versions), Modicon Momentum MDI (171CBU*) (Versions prior to V2.3), Legacy Modicon Quantum (All Versions)

Metrics

CVSS 3.1
7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Probability
0.62%

45.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
Schneider-ElectricModicon M340 Bmxp341000 Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp342000 Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp342010 Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp3420102 Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp342020 Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp342020h Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp342030 Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp3420302 Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp3420302h Firmware< 3.40
Schneider-ElectricModicon M340 Bmxp342030h Firmware< 3.40
Schneider-ElectricModicon M580 Bmeh582040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh582040c Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh582040s Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh584040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh584040c Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh584040s Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh586040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh586040c Firmware<= 3.20
Schneider-ElectricModicon M580 Bmeh586040s Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep581020 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep581020h Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep582020 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep582020h Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep582040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep582040h Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep582040s Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep583020 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep583040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep584020 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep584040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep584040s Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep585040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep585040c Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep586040 Firmware<= 3.20
Schneider-ElectricModicon M580 Bmep586040c Firmware<= 3.20
Schneider-ElectricModicon Momentum 171cbu78090 Firmware< 2.4
Schneider-ElectricModicon Momentum 171cbu98090 Firmware< 2.4
Schneider-ElectricModicon Momentum 171cbu98091 Firmware< 2.4
Schneider-ElectricModicon Mc80 Bmkc8020301 Firmware< 1.70
Schneider-ElectricModicon Mc80 Bmkc8020310 Firmware< 1.70
Schneider-ElectricModicon Mc80 Bmkc8030311 Firmware< 1.70

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2021-22786?
A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU (part numbers BMXP34*) (Versions prior to V3.30), Modicon M580 CPU (part numbers BMEP* and BMEH*) (Versions prior to SV3.20), Modicon MC80 (BMKC80) (Versions prior to V1.6), Modicon M580 CPU Safety (part numbers BMEP58*S and BMEH58*S) (All Versions), Modicon Momentum MDI (171CBU*) (Versions prior to V2.3), Legacy Modicon Quantum (All Versions)
How severe is CVE-2021-22786?
CVE-2021-22786 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 0.62% probability of exploitation in the next 30 days.
How do I fix CVE-2021-22786?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-22786?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST