Vulnerability Details CVE-2021-22786
A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU (part numbers BMXP34*) (Versions prior to V3.30), Modicon M580 CPU (part numbers BMEP* and BMEH*) (Versions prior to SV3.20), Modicon MC80 (BMKC80) (Versions prior to V1.6), Modicon M580 CPU Safety (part numbers BMEP58*S and BMEH58*S) (All Versions), Modicon Momentum MDI (171CBU*) (Versions prior to V2.3), Legacy Modicon Quantum (All Versions)
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.8%
CVSS Severity
CVSS v3 Score 7.5
References
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-221-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-221-04-Modicon_Controllers_Ethernet_Modules_Security_Notification.pdf
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-221-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-221-04-Modicon_Controllers_Ethernet_Modules_Security_Notification.pdf
Products affected by CVE-2021-22786
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342000:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342010:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020h:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302h:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030h:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040c:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040c:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040c:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-
-
cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020301:-
-
cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020310:-
-
cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8030311:-
-
cpe:2.3:h:schneider-electric:modicon_momentum_171cbu78090:-
-
cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98090:-
-
cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98091:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp341000_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp341000_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp341000_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp341000_firmware:3.30
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342000_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342000_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342000_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342000_firmware:3.30
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420102_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420102_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420102_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420102_firmware:3.30
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342010_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:3.30
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020h_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020h_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302_firmware:3.30
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302h_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302h_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342030_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342030_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342030h_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342030h_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040c_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040c_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040s_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040c_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040c_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040s_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040c_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040c_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040s_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020h_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020h_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020h_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020h_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040h_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040h_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.60
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.30
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.41
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.60
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040s_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.30
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.41
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.60
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040c_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040c_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.30
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.41
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040c_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040c_firmware:3.20
-
cpe:2.3:o:schneider-electric:modicon_mc80_bmkc8020301_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_mc80_bmkc8020310_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_mc80_bmkc8030311_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_momentum_171cbu78090_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_momentum_171cbu98090_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_momentum_171cbu98091_firmware:-