Unrated severityNVD Advisory· Published Nov 22, 2022· Updated Apr 29, 2025

CVE-2022-0222

Description

A CWE-269: Improper Privilege Management vulnerability exists that could cause a denial of service of the Ethernet communication of the controller when sending a specific request over SNMP. Affected products: Modicon M340 CPUs(BMXP34* versions prior to V3.40), Modicon M340 X80 Ethernet Communication modules:BMXNOE0100 (H), BMXNOE0110 (H), BMXNOR0200H RTU(BMXNOE* all versions)(BMXNOR* versions prior to v1.7 IR24)

Affected products

Schneider Electric/Modicon M340 CPUsllm-create
Range: <V3.40
Schneider Electric/Modicon M340 X80 Ethernet Communication modulesllm-create2 versions
BMXNOE* all versions; BMXNOR* <v1.7 IR24+ 1 more
- (no CPE)range: BMXNOE* all versions; BMXNOR* <v1.7 IR24
- (no CPE)range: BMXNOE* All Versions
Schneider Electric/Modicon M340cpe-rescue
Range: BMXP34*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.se.com/us/en/download/document/SEVD-2022-102-02/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000