You are here

Schneider Electric Modicon Ethernet Serial RTU (ICSA-20-044-01)

Schneider Electric Modicon Ethernet Serial RTU (ICSA-20-044-01)

Created: Thursday, February 13, 2020 - 13:04
Categories:
Cyber Security

CISA has published an advisory on improper check for unusual or exceptional conditions and improper access control vulnerabilities in Schneider Electric Modicon BMXNOR0200H. All firmware versions are affected. Successful exploitation of these vulnerabilities could limit system availability. Schneider Electric recommends users set up network segmentation and implement a firewall to block all unauthorized access to Port 2404/TCP and SNMP Port 161/UDP. CISA also recommends a series of measures to mitigate the vulnerabilities. Read the advisory at CISA.