← Back to home
ICSA-18-240-02  ·  Published 2018-08-28  ·  View on CISA ICS-CERT ↗

Schneider Electric Modicon M221

CVSS 4.8 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could allow an unauthorized user to remotely reboot the device.

CVEs (1)

Remediations

  • Schneider Electric reports that a fix for this vulnerability is implemented in Modicon M221 Firmware v1.6.2.0, delivered within SoMachine Basic v1.6 SP2, or by using the Schneider Electric Software Update tool.
  • The download for SoMachine Basic is available at:
  • For more information, see the Schneider Electric security notification at:

Affected Vendors

Schneider Electric Software, LLC

Affected Products (1)

Schneider Electric Software, LLC · Modicon M221 <1.6.2.0

Affected Sectors

Commercial Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more