VDB
ICSA-17-089-02
ICSA-17-089-02
PUBLISHED
CVSS 6.5 MEDIUM
ATTENTION: Remotely exploitable/low skill level to exploit.
Risk Scores
CVSS v3.1
6.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Modicon M241: firmware versions prior to Version 4.0.5.11 | ||
| Modicon M251: all versions | ||
| Modicon M251: firmware versions prior to Version 4.0.5.11 | ||
| Modicon M241: all versions | ||
| Modicon M221: firmware versions prior to Version 1.5.0.0 |
Timeline
- Mar 30, 2017 CVE Published
References
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2017/icsa-17-089-02.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-17-089-02 advisory
- http://www.schneider-electric.fr/fr/download/document/SOMBASAP15SOFT/ fix
- http://www.schneider-electric.com/en/download/document/SEVD-2017-075-01 fix
- http://www.schneider-electric.com/en/download/document/SEVD-2017-075-02 fix
- http://www.schneider-electric.com/en/download/document/SEVD-2017-075-03 fix