Details of VAR-202211-1344

ID

VAR-202211-1344

CVE

CVE-2022-37301

TITLE

Schneider Electric Product Numeric Error Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2022-86330

DESCRIPTION

A CWE-191: Integer Underflow (Wrap or Wraparound) vulnerability exists that could cause a denial of service of the controller due to memory access violations when using the Modbus TCP protocol. Affected products: Modicon M340 CPU (part numbers BMXP34*)(V3.40 and prior), Modicon M580 CPU (part numbers BMEP* and BMEH*)(V3.22 and prior), Legacy Modicon Quantum/Premium(All Versions), Modicon Momentum MDI (171CBU*)(All Versions), Modicon MC80 (BMKC80)(V1.7 and prior). Schneider Electric Modicon M340 is a medium-range PLC (programmable logic controller) for industrial processes and infrastructures from Schneider Electric, France. Schneider Electric products have a number error vulnerability. The vulnerability is caused by a memory access violation. Attackers can use the vulnerability to launch a denial of service attack

Trust: 1.53

sources: NVD: CVE-2022-37301 // CNVD: CNVD-2022-86330 // VULMON: CVE-2022-37301

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2022-86330

AFFECTED PRODUCTS

vendor:	schneider electric	model:	modicon m340 bmx p34-2010	scope:	lt	version:	3.50	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 2634m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep582040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 1634m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon quantum 140cpu65160c	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep582020	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep584040s	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon mc80 bmkc8020310	scope:	lt	version:	1.8	Trust: 1.0
vendor:	schneider electric	model:	modicon momentum 171cbu78090	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 4634m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep585040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh584040s	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 554m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep583020	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 6634m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m340 bmx p34-2030	scope:	lt	version:	3.50	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep582040s	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon quantum 140cpu65160	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep584040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 2834m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon quantum 140noc78100	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh586040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh582040c	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh584040c	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh582040s	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 5634m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep586040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh584040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh586040s	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon premium tsxp57 454m	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep582020h	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon mc80 bmkc8030311	scope:	lt	version:	1.8	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep586040c	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon momentum 171cbu98091	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon quantum 140noe77101	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep584020	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon mc80 bmkc8020301	scope:	lt	version:	1.8	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep582040h	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon quantum 140cpu65150	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon quantum 140noe77111	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh582040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep581020	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep583040	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmeh586040c	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep585040c	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon m580 bmep581020h	scope:	lt	version:	4.01	Trust: 1.0
vendor:	schneider electric	model:	modicon quantum 140cpu65150c	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider electric	model:	modicon momentum 171cbu98090	scope:	eq	version:	-	Trust: 1.0
vendor:	schneider	model:	electric modicon momentum mdi	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric modicon m340 cpu	scope:	lte	version:	<=v3.40	Trust: 0.6
vendor:	schneider	model:	electric modicon m580 cpu	scope:	lte	version:	<=v3.22	Trust: 0.6
vendor:	schneider	model:	electric modicon mc80	scope:	lte	version:	<=v1.7	Trust: 0.6
vendor:	schneider	model:	electric premium	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric legacy modicon quantum	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2022-86330 // NVD: CVE-2022-37301

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-37301
value:	HIGH
Trust: 1.0
cybersecurity@se.com:	CVE-2022-37301
value:	HIGH
Trust: 1.0
CNVD:	CNVD-2022-86330
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-202211-3279
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2022-86330
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2022-37301
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 2.0

sources: CNVD: CNVD-2022-86330 // CNNVD: CNNVD-202211-3279 // NVD: CVE-2022-37301 // NVD: CVE-2022-37301

PROBLEMTYPE DATA

problemtype:

CWE-191

Trust: 1.0

sources: NVD: CVE-2022-37301

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202211-3279

TYPE

digital error

Trust: 0.6

sources: CNNVD: CNNVD-202211-3279

PATCH

title:	Patch for Schneider Electric Product Numeric Error Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/367081	Trust: 0.6
title:	Schneider Electric Modicon M340 Fixes for digital error vulnerabilities	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=215777	Trust: 0.6

sources: CNVD: CNVD-2022-86330 // CNNVD: CNNVD-202211-3279

EXTERNAL IDS

db:	SCHNEIDER	id:	SEVD-2022-221-02	Trust: 2.3
db:	NVD	id:	CVE-2022-37301	Trust: 2.3
db:	CNVD	id:	CNVD-2022-86330	Trust: 0.6
db:	CNNVD	id:	CNNVD-202211-3279	Trust: 0.6
db:	VULMON	id:	CVE-2022-37301	Trust: 0.1

sources: CNVD: CNVD-2022-86330 // VULMON: CVE-2022-37301 // CNNVD: CNNVD-202211-3279 // NVD: CVE-2022-37301

REFERENCES

url:	https://www.se.com/us/en/download/document/sevd-2022-221-02/	Trust: 2.3
url:	https://cxsecurity.com/cveshow/cve-2022-37301/	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/191.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: CNVD: CNVD-2022-86330 // VULMON: CVE-2022-37301 // CNNVD: CNNVD-202211-3279 // NVD: CVE-2022-37301

SOURCES

db:	CNVD	id:	CNVD-2022-86330
db:	VULMON	id:	CVE-2022-37301
db:	CNNVD	id:	CNNVD-202211-3279
db:	NVD	id:	CVE-2022-37301

LAST UPDATE DATE

2024-08-14T14:49:30.221000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2022-86330	date:	2022-12-09T00:00:00
db:	VULMON	id:	CVE-2022-37301	date:	2022-11-22T00:00:00
db:	CNNVD	id:	CNNVD-202211-3279	date:	2022-12-01T00:00:00
db:	NVD	id:	CVE-2022-37301	date:	2022-11-30T20:23:57.423

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2022-86330	date:	2022-12-07T00:00:00
db:	VULMON	id:	CVE-2022-37301	date:	2022-11-22T00:00:00
db:	CNNVD	id:	CNNVD-202211-3279	date:	2022-11-22T00:00:00
db:	NVD	id:	CVE-2022-37301	date:	2022-11-22T12:15:09.927