Schneider Electric Modicon M221

Risk Summary

Successful exploitation of these vulnerabilities may allow unauthorized users to replay authentication sequences, overwrite passwords, or decode passwords.

CVEs (3)

Remediations

• A fix for these vulnerabilities is implemented in Modicon M221 Firmware v1.6.2.0, delivered within SoMachine Basic v1.6 SP2, which is available for download below, or by using Schneider Electric Software Update tool
• As a temporary mitigation, Modicon M221 users should take the following measures: Set up a firewall blocking all remote/external access to Port 502.
• Within the Modicon M221 application, users must disable all unused protocols, especially programming protocol, as described in section “Configuring Ethernet Network” of SoMachine Basic online help. This will prevent remote programming of the M221 PLC.
• Schneider Electric's security notice SEVD-2018-235-01 is available

Affected Vendors

Affected Products (1)

Affected Sectors

Commercial Facilities