Unrated severityNVD Advisory· Published Jul 13, 2022· Updated Sep 16, 2024
CVE-2022-34763
CVE-2022-34763
Description
A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists that could cause loading of unauthorized firmware images due to improper verification of the firmware signature. Affected Products: X80 advanced RTU Communication Module (BMENOR2200H) (V2.01 and later), OPC UA Modicon Communication Module (BMENUA0100) (V1.10 and prior)
Affected products
4>=2.01+ 1 more
- (no CPE)range: >=2.01
- (no CPE)range: V2.01
<=1.10+ 1 more
- (no CPE)range: <=1.10
- (no CPE)range: BMENUA0100
Patches
Vulnerability mechanics
References
1- download.schneider-electric.com/filesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.