Schneider Electric ConneXium Tofino Firewall ModBus Packet access control

A vulnerability, which was classified as critical, has been found in Schneider Electric ConneXium Tofino Firewall (SCADA Software) (affected version not known). Affected by this issue is an unknown function of the component ModBus Packet Handler. Upgrading eliminates this vulnerability.

Field01/12/2022 05:56 PM01/15/2022 09:36 AM
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore7.57.5
cvss2_vuldb_tempscore6.56.5
cvss3_vuldb_basescore7.37.3
cvss3_vuldb_tempscore7.07.0
cvss3_meta_basescore7.37.3
cvss3_meta_tempscore7.07.0
price_0day$0-$5k$0-$5k
vendorSchneider ElectricSchneider Electric
nameConneXium Tofino FirewallConneXium Tofino Firewall
componentModBus Packet HandlerModBus Packet Handler
cwe284 (privilege escalation)284 (privilege escalation)
risk22
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
identifierSEVD-2022-011-05SEVD-2022-011-05
urlhttps://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05
nameUpgradeUpgrade
cveCVE-2021-30065CVE-2021-30065
date1641942000 (01/12/2022)1641942000 (01/12/2022)
typeSCADA SoftwareSCADA Software
cvss2_vuldb_avNN
cve_assigned1617314400

Do you want to use VulDB in your project?

Use the official API to access entries easily!