CVE-2023-25620
Published Apr 19, 2023
Last updated 2 years ago
Overview
- Description
- A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious project file is loaded onto the controller by an authenticated user.
- Source
- cybersecurity@se.com
- NVD status
- Modified
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
Weaknesses
- cybersecurity@se.com
- CWE-754
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4818276-B0D9-41F6-B8F6-C94B88F6E2A1",
"versionEndExcluding": "4.10"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E876C738-ABF6-4864-98A6-1E06E96A0DF4"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DDBE606F-EE13-410F-839A-708EB480B3E3",
"versionEndExcluding": "3.51"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "138681A2-0146-492B-8E10-06849FC27C6E"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:modicon_momentum_unity_m1e_processor_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C53AFB8E-0830-46BE-8BED-4BF61B354262"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:modicon_momentum_unity_m1e_processor:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6C0178B3-FC32-4473-A368-A614F6F55F98"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:modicon_mc80_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "526DCF0E-C625-4114-80CB-AD79912104FF"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:modicon_mc80:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B7A6BC87-E598-4DB6-AD19-5E836C1B6570"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:140cpu65_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12B6D628-61AA-4999-B71F-FF93182A035B"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:140cpu65:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F6E9922C-D583-4820-9BAC-8D8CC31F482B"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:tsxp57_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B20CF298-0E3F-4142-B7CF-791FA5E5545C"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:tsxp57:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D2161791-5948-4C6E-B0FC-8DC7686CD87A"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:bmep58s_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "24D21387-44D7-49C3-A809-85AF4D221772"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:bmep58s:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7C1E042E-5DF3-4C78-95AC-114AB889A7E7"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:schneider-electric:bmeh58s_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "10BD4983-0194-4499-A6F8-6FD123482F33"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:schneider-electric:bmeh58s:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0E6CCDB6-CAFB-49CB-AB5B-EDDC13835F03"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]