Schneider Electric Modicon M340, MC80, and Momentum Unity M1E (Update B)

CVEs (3)

Remediations

• If customers choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploit: • Setup network segmentation and implement a firewall to block all unauthorized access to port 502/TCP • Configure the Access Control List following the recommendations of the user manuals: “Modicon M340 for Ethernet Communications Modules and Processors User Manual” chapter “Messaging Configuration Parameters”: https://www.se.com/ww/en/download/document/31007131K01000/ • Consider use of external firewall devices such as EAGLE40-07 from Belden to establish VPN connections. For more details refer to “Modicon Controller Systems Cybersecurity, User Guide”: https://www.se.com/ww/en/download/document/EIO0000001999/ • Ensure the M340 CPU is running with the memory protection activated by configuring the input bit to a physical input, for more details refer to the following guideline “Modicon Controller Systems Cybersecurity, User Guide” chapter “Controler Memory Protection”: https://www.se.com/ww/en/download/document/EIO0000001999/
• Version SV3.65 of Modicon M340 firmware includes a fix for these vulnerabilities and is available for download here: https://www.se.com/ww/en/product-range/1468- modicon-m340
• If customers choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploit:• Setup network segmentation and implement a firewall to block all unauthorized access to port 502/TCP • Configure the Access Control List following the recommendations of the user manuals: “Modicon M340 for Ethernet Communications Modules and Processors User Manual” chapter “Messaging Configuration Parameters”: https://www.se.com/ww/en/download/document/31007131K01000/ • Consider use of external firewall devices such as EAGLE40-07 from Belden to establish VPN connections. For more details refer to “Modicon Controller Systems Cybersecurity, User Guide”: https://www.se.com/ww/en/download/document/EIO0000001999/ • Ensure the M340 CPU is running with the memory protection activated by configuring the input bit to a physical input, for more details refer to the following guideline “Modicon Controller Systems Cybersecurity, User Guide” chapter “Controler Memory Protection”: https://www.se.com/ww/en/download/document/EIO0000001999/
• If customers choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploit:• Setup network segmentation and implement a firewall to block all unauthorized access to port 502/TCP • Configure the Access Control List following the recommendations of the user manuals: “MC80 Programmable Logic Controller(PLC), User Manual” in the section “Access Control List (ACL)”: https://www.se.com/ww/en/download/document/EIO0000002071/ • Consider use of external firewall devices such as EAGLE40-07 from Belden to establish VPN connections. For more details refer to “Modicon Controller Systems Cybersecurity, User Guide”: https://www.se.com/ww/en/download/document/EIO0000001999/
• If customers choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploit:• Setup network segmentation and implement a firewall to block all unauthorized access to port 502/TCP • Configure the Access Control List following the recommendations of the user manuals: “Momentum for EcoStruxure™ Control Expert -171CBU78090, 171CBU98090, 171CBU98091 Processors, User Guide” in the section “Controlling Access”:https://www.se.com/ww/en/download/document/HRB44124/• Consider use of external firewall devices such as EAGLE40-07 from Belden to establish VPN connections. For more details refer to “Modicon Controller Systems Cybersecurity, User Guide”:https://www.se.com/ww/en/download/document/EIO0000001999/
• Version SV2.80 of Modicon Momentum firmware includes a fix for these vulnerabilities and is available for download here: https://www.se.com/ww/en/product-range/535-modicon-momentum
• Version SV2.1 of Modicon MC80 firmware includes a fix for these vulnerabilities and is available for download here: https://www.se.com/ww/en/product-range/62396-modicon-mc80

Affected Vendors

Affected Products (6)

Affected Sectors

Commercial Facilities, Critical Manufacturing, Energy