← Back to home
ICSA-20-044-01  ·  Published 2020-02-13  ·  View on CISA ICS-CERT ↗

Schneider Electric Modicon Ethernet Serial RTU

CVSS 8.6 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow remote code execution or cause a denial-of-service condition.

CVEs (3)

Remediations

  • Schneider Electric recommends users set up network segmentation and implement a firewall to block all unauthorized access to Port 2404/TCP and SNMP Port 161/UDP.
  • For more information, see the Schneider Electric security notification.

Affected Vendors

Schneider Electric Software, LLC

Affected Products (1)

Schneider Electric Software, LLC · BMXNOR0200H Ethernet/Serial RTU module vers:all/*

Affected Sectors

Commercial Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more