Schneider-Electric: >> Triconex Tricon Mp 3008 Security Vulnerabilities
In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call is made, registers are stored to a fixed memory location. Modifying the data in this location could allow attackers to gain supervisor-level access and control system states.
CVSS Score
6.7
EPSS Score
0.001
Published
2018-05-04
In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, system calls read directly from memory addresses within the control program area without any verification. Manipulating this data could allow attacker data to be copied anywhere within memory.
CVSS Score
8.1
EPSS Score
0.008
Published
2018-05-04