Medium severity5.3NVD Advisory· Published Mar 9, 2022· Updated Jun 17, 2026
CVE-2022-24322
CVE-2022-24322
Description
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product: EcoStruxure Control Expert (V15.0 SP1 and prior)
Affected products
2<=V15.0 SP1+ 1 more
- (no CPE)range: <=V15.0 SP1
- (no CPE)range: V15.0 SP1 and prior
Patches
Vulnerability mechanics
References
1- download.schneider-electric.com/filesnvdVendor Advisory
News mentions
0No linked articles in our index yet.