CVE-2022-37301
published 2022-11-22CVE-2022-37301: A CWE-191: Integer Underflow (Wrap or Wraparound) vulnerability exists that could cause a denial of service of the controller due to memory access violations…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A CWE-191: Integer Underflow (Wrap or Wraparound) vulnerability exists that could cause a denial of service of the controller due to memory access violations when using the Modbus TCP protocol. Affected products: Modicon M340 CPU (part numbers BMXP34*)(V3.40 and prior), Modicon M580 CPU (part numbers BMEP* and BMEH*)(V3.22 and prior), Legacy Modicon Quantum/Premium(All Versions), Modicon Momentum MDI (171CBU*)(All Versions), Modicon MC80 (BMKC80)(V1.7 and prior)
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | modicon_m340_bmx_p34-2010_firmware | < 3.50 | 3.50 |
| schneider-electric | modicon_m340_bmx_p34-2030_firmware | < 3.50 | 3.50 |
| schneider-electric | modicon_m580_bmeh582040_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh582040c_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh582040s_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh584040_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh584040c_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh584040s_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh586040_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh586040c_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmeh586040s_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep581020_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep581020h_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep582020_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep582020h_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep582040_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep582040h_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep582040s_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep583020_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep583040_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep584020_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep584040_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep584040s_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep585040_firmware | < 4.01 | 4.01 |
| schneider-electric | modicon_m580_bmep585040c_firmware | < 4.01 | 4.01 |