CVE-2021-22699: Improper Input Validation vulnerability exists in Modicon M241/M251 logic controllers firmware prior to V5.1.9.1 that could cause denial of service when…

high7.5CVSS 3.1

AVNACLPRNUINSUCNINAH

Improper Input Validation vulnerability exists in Modicon M241/M251 logic controllers firmware prior to V5.1.9.1 that could cause denial of service when specific crafted requests are sent to the controller over HTTP.

Affected

3 ranges

Vendor	Product	Version range	Fixed in
modicon_m241	m251_logic_controllers_firmware_prior_to_v5.1.9.1	—	—
schneider-electric	modicon_m241_firmware	< 5.1.9.1	5.1.9.1
schneider-electric	modicon_m251_firmware	< 5.1.9.1	5.1.9.1