CVE-2021-22742

CWE-7543 documents3 sources

Severity

3.9LOW

EPSS

0.1%

top 82.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Schneider-electric TCM 4351b Firmware Schneider-electric Triconex Model 3009 MP Firmware

Timeline

PublishedMay 26

Latest updateMay 24

Description

Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11.3.x systems that could cause module reset when TCM receives malformed TriStation packets while the write-protect keyswitch is in the program position.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 0.3 | Impact: 3.6

Affected Packages3 packages

▶CVEListV5triconex_model_3009_mp_installed_on_tricon_v11.3.x_systemsTriconex Model 3009 MP installed on Tricon V11.3.x systems

▶NVDschneider-electric/triconex_model_3009_mp_firmware11.3.0 — 11.8.0

▶NVDschneider-electric/tcm_4351b_firmware11.3.0 — 11.5.1+1

🔴Vulnerability Details

GHSA

GHSA-xv33-m47j-6p6j: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11↗2022-05-24

▶

CVEList

CVE-2021-22742: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11↗2021-05-26

▶