Medium severity5.3NVD Advisory· Published Mar 9, 2022· Updated Jun 17, 2026
CVE-2022-24323
CVE-2022-24323
Description
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software, when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product: EcoStruxure Process Expert (V2021 and prior), EcoStruxure Control Expert (V15.0 SP1 and prior)
Affected products
4<=V15.0 SP1+ 1 more
- (no CPE)range: <=V15.0 SP1
- (no CPE)range: V15.0 SP1 and prior
<=V2021+ 1 more
- (no CPE)range: <=V2021
- (no CPE)range: V2021 and prior
Patches
Vulnerability mechanics
References
1- download.schneider-electric.com/filesnvdVendor Advisory
News mentions
0No linked articles in our index yet.