Vulnerabilities > CVE-2017-6032 - Improperly Implemented Security Check for Standard vulnerability in Schneider-Electric Modbus Firmware

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
schneider-electric
CWE-358
NVD
Published: 2017-06-30
Updated: 2019-10-09

Summary

A Violation of Secure Design Principles issue was discovered in Schneider Electric Modicon Modbus Protocol. The Modicon Modbus protocol has a session-related weakness making it susceptible to brute-force attacks.

Vulnerable Configurations

Part Description Count
OS
Schneider-Electric
1
Hardware
Schneider-Electric
1

Common Weakness Enumeration (CWE)

References