CVE-2021-22786

Summary

CVE	CVE-2021-22786
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-02-01 04:15:00 UTC
Updated	2023-02-08 17:04:00 UTC
Description	A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU (part numbers BMXP34) (Versions prior to V3.30), Modicon M580 CPU (part numbers BMEP and BMEH) (Versions prior to SV3.20), Modicon MC80 (BMKC80) (Versions prior to V1.6), Modicon M580 CPU Safety (part numbers BMEP58S and BMEH58S) (All Versions), Modicon Momentum MDI (171CBU) (Versions prior to V2.3), Legacy Modicon Quantum (All Versions)

Risk And Classification

Problem Types: CWE-200

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Schneider-electric	Modicon M340 Bmxp341000	-	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp341000 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp342000	-	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp342000 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp342010	-	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp3420102	-	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp3420102 Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp342010 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp342020	-	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp342020h	-	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp342020h Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp342020 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp342030	-	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp3420302	-	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp3420302h	-	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp3420302h Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp3420302 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M340 Bmxp342030h	-	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp342030h Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M340 Bmxp342030 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh582040	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh582040c	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh582040c Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh582040s	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh582040s Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh582040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh584040	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh584040c	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh584040c Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh584040s	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh584040s Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh584040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh586040	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh586040c	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh586040c Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmeh586040s	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh586040s Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmeh586040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep581020	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep581020h	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep581020h Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep581020 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep582020	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep582020h	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep582020h Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep582020 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep582040	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep582040h	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep582040h Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep582040s	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep582040s Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep582040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep583020	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep583020 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep583040	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep583040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep584020	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep584020 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep584040	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep584040s	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep584040s Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep584040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep585040	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep585040c	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep585040c Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep585040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep586040	-	All	All	All
Hardware	Schneider-electric	Modicon M580 Bmep586040c	-	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep586040c Firmware	All	All	All	All
Operating System	Schneider-electric	Modicon M580 Bmep586040 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon Mc80 Bmkc8020301	-	All	All	All
Operating System	Schneider-electric	Modicon Mc80 Bmkc8020301 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon Mc80 Bmkc8020310	-	All	All	All
Operating System	Schneider-electric	Modicon Mc80 Bmkc8020310 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon Mc80 Bmkc8030311	-	All	All	All
Operating System	Schneider-electric	Modicon Mc80 Bmkc8030311 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon Momentum 171cbu78090	-	All	All	All
Operating System	Schneider-electric	Modicon Momentum 171cbu78090 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon Momentum 171cbu98090	-	All	All	All
Operating System	Schneider-electric	Modicon Momentum 171cbu98090 Firmware	All	All	All	All
Hardware	Schneider-electric	Modicon Momentum 171cbu98091	-	All	All	All
Operating System	Schneider-electric	Modicon Momentum 171cbu98091 Firmware	All	All	All	All

References

Reference	Source	Link	Tags
download.schneider-electric.com/files	MISC	download.schneider-electric.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

591036 Schneider Electric Modicon PAC Controllers Vulnerability (SEVD-2022-221-04)