QwikSec

Security Database

CVE

CWE

Training

CVE-2022-22724

Published: Feb 4, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service on ports 80 (HTTP) and 502 (Modbus), when sending a large number of TCP RST or FIN packets to any open TCP port of the PLC. Affected Product: Modicon M340 CPUs: BMXP34 (All Versions)

Vendor	Product	Versions
n/a	Modicon M340 CPUs: BMXP34 (All Versions)	affected `Modicon M340 CPUs: BMXP34 (All Versions)`

Weaknesses (CWE)

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-01

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.