CVE-2017-7574 — Hard-coded Credentials in Modicon Tm221ce16r Firmware

CWE-798 — Hard-coded Credentials3 documents3 sources

Severity

9.8CRITICALNVD

EPSS

0.3%

top 49.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Schneider-electric Modicon Tm221ce16r Firmware Schneider-electric Somachine

Timeline

PublishedApr 6

Latest updateMay 13

Description

Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML file is AES-CBC encrypted; however, the key used for encryption (SoMachineBasicSoMachineBasicSoMa) cannot be changed. After decrypting the XML file with this key, the user password can be found in the de…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDschneider-electric/modicon_tm221ce16r_firmware1.3.3.3

▶NVDschneider-electric/somachine1.4

🔴Vulnerability Details

GHSA

GHSA-v5jg-gm3q-h894: Schneider Electric SoMachine Basic 1↗2022-05-13

▶

CVEList

CVE-2017-7574: Schneider Electric SoMachine Basic 1↗2017-04-06

▶