CVE-2023-6408
published 2024-02-14CVE-2023-6408: CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability exists that could cause a denial of service and…
high8.1CVSS 3.1
AVNACHPRNUINSUCHIHAH
CWE-924: Improper Enforcement of Message Integrity During Transmission in a
Communication Channel vulnerability exists that could cause a denial of service and loss of
confidentiality, integrity of controllers when conducting a Man in the Middle attack.
Affected
47 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | ecostruxure_control_expert | < 16.0 | 16.0 |
| schneider-electric | ecostruxure_process_expert | < 2023 | 2023 |
| schneider-electric | modicon_m340_bmxp341000_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp341000h_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp342000_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp3420102_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp3420102cl_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp342010_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp342020_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp342020h_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp3420302_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp3420302cl_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp3420302h_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp342030_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m340_bmxp342030h_firmware | < 3.60 | 3.60 |
| schneider-electric | modicon_m580_bmeh582040_firmware | < 4.20 | 4.20 |
| schneider-electric | modicon_m580_bmeh582040c_firmware | < 4.20 | 4.20 |
| schneider-electric | modicon_m580_bmeh582040s_firmware | < 4.21 | 4.21 |
| schneider-electric | modicon_m580_bmeh584040_firmware | < 4.20 | 4.20 |
| schneider-electric | modicon_m580_bmeh584040c_firmware | < 4.20 | 4.20 |
| schneider-electric | modicon_m580_bmeh584040s_firmware | < 4.21 | 4.21 |
| schneider-electric | modicon_m580_bmeh586040_firmware | < 4.20 | 4.20 |
| schneider-electric | modicon_m580_bmeh586040c_firmware | < 4.20 | 4.20 |
| schneider-electric | modicon_m580_bmeh586040s_firmware | < 4.21 | 4.21 |
| schneider-electric | modicon_m580_bmep581020_firmware | < 4.20 | 4.20 |
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
osv5.5MEDIUM