High severity8.2NVD Advisory· Published Nov 2, 2018· Updated Jun 17, 2026
CVE-2018-7798
CVE-2018-7798
Description
A Insufficient Verification of Data Authenticity (CWE-345) vulnerability exists in the Modicon M221, all versions, which could cause a change of IPv4 configuration (IP address, mask and gateway) when remotely connected to the device.
Affected products
3- cpe:2.3:a:schneider-electric:somachine_basic:*:*:*:*:*:*:*:*
- Range: all versions
- Schneider Electric SE/Modicon M221, All Versionsv5Range: Modicon M221, All Versions
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/105970nvdThird Party AdvisoryVDB Entry
- www.schneider-electric.com/en/download/document/SEVD-2018-270-01/nvdMitigationVendor Advisory
News mentions
0No linked articles in our index yet.