HomeSchneider-ElectricCVE-2023-6408

CVE-2023-6408

HIGH
8.1CVSS
Published: 2024-02-14
Updated: 2025-01-23
AI Analysis

Description

CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability exists that could cause a denial of service and loss of confidentiality, integrity of controllers when conducting a Man in the Middle attack.

CVSS Metrics

Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
network
Complexity
high
Privileges
none
User Action
none
Scope
unchanged
Confidentiality
high
Integrity
high
Availability
high
Weaknesses
CWE-924

Metadata

Primary Vendor
SCHNEIDER-ELECTRIC
Published
2/14/2024
Last Modified
1/23/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

schneider-electric : modicon_m340_bmxp341000_firmwareschneider-electric : modicon_m340_bmxp341000h_firmwareschneider-electric : modicon_m340_bmxp342000_firmwareschneider-electric : modicon_m340_bmxp342010_firmwareschneider-electric : modicon_m340_bmxp3420102_firmwareschneider-electric : modicon_m340_bmxp3420102cl_firmwareschneider-electric : modicon_m340_bmxp342020_firmwareschneider-electric : modicon_m340_bmxp342020h_firmwareschneider-electric : modicon_m340_bmxp342030_firmwareschneider-electric : modicon_m340_bmxp3420302_firmwareschneider-electric : modicon_m340_bmxp3420302cl_firmwareschneider-electric : modicon_m340_bmxp3420302h_firmwareschneider-electric : modicon_m340_bmxp342030h_firmwareschneider-electric : modicon_m580_bmep581020_firmwareschneider-electric : modicon_m580_bmep581020h_firmwareschneider-electric : modicon_m580_bmep582020_firmwareschneider-electric : modicon_m580_bmep582020h_firmwareschneider-electric : modicon_m580_bmep582040_firmwareschneider-electric : modicon_m580_bmep582040h_firmwareschneider-electric : modicon_m580_bmep582040s_firmwareschneider-electric : modicon_m580_bmep583020_firmwareschneider-electric : modicon_m580_bmep583040_firmwareschneider-electric : modicon_m580_bmep584040_firmwareschneider-electric : modicon_m580_bmep584020_firmwareschneider-electric : modicon_m580_bmep584040s_firmwareschneider-electric : modicon_m580_bmep585040_firmwareschneider-electric : modicon_m580_bmep585040c_firmwareschneider-electric : modicon_m580_bmep586040_firmwareschneider-electric : modicon_m580_bmep586040c_firmwareschneider-electric : modicon_m580_bmeh582040_firmwareschneider-electric : modicon_m580_bmeh582040c_firmwareschneider-electric : modicon_m580_bmeh584040_firmwareschneider-electric : modicon_m580_bmeh582040s_firmwareschneider-electric : modicon_m580_bmeh584040c_firmwareschneider-electric : modicon_m580_bmeh584040s_firmwareschneider-electric : modicon_m580_bmeh586040_firmwareschneider-electric : modicon_m580_bmeh586040c_firmwareschneider-electric : modicon_m580_bmeh586040s_firmwareschneider-electric : modicon_mc80_bmkc8020301_firmwareschneider-electric : modicon_mc80_bmkc8020310_firmwareschneider-electric : modicon_mc80_bmkc8030311schneider-electric : modicon_momentum_171cbu78090_firmwareschneider-electric : modicon_momentum_171cbu98090_firmwareschneider-electric : modicon_momentum_171cbu98091_firmwareschneider-electric : ecostruxure_control_expertschneider-electric : ecostruxure_process_expert

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2023-6408 | HIGH Severity | CVEDatabase.com | CVEDatabase.com