VDB
ICSA-21-159-05
ICSA-21-159-05
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Successful exploitation of this vulnerability may result in information disclosure to an unauthenticated remote user, which could result in an understanding of the network architecture.
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Modicon X80 BMXNOR0200H RTU: SV1.70 IR22 and prior |
Timeline
- Jun 8, 2021 CVE Published
References
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-159-05.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-159-05 advisory
- https://us-cert.cisa.gov/ncas/tips/ST04-014 url
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B url
- https://download.schneider-electric.com/files?p_Doc_Ref=EIO0000001999 fix
- https://download.schneider-electric.com/files?p_enDocType=User+guide&p_File_Name=EIO0000000505.11.pdf&p_Doc_Ref=EIO0000000505 fix
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-05 fix