High severity8.1NVD Advisory· Published Feb 14, 2024· Updated Jun 17, 2026
CVE-2023-6408
CVE-2023-6408
Description
CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability exists that could cause a denial of service and loss of confidentiality, integrity of controllers when conducting a Man in the Middle attack.
Affected products
6- Range: Versions prior to v16.0
- Range: Versions prior to v2023
- Schneider Electric/Modicon M340 CPU (part numbers BMXP34*)v5Range: Versions prior to sv3.60
- Schneider Electric/Modicon M580 CPU (part numbers BMEP* and BMEH*, excluding M580 CPU Safety)v5Range: Versions prior to sv4.20
- Schneider Electric/Modicon M580 CPU Safety (part numbers BMEP58*S and BMEH58*S)v5Range: All Versions
Patches
Vulnerability mechanics
References
1- download.schneider-electric.com/filesnvdVendor Advisory
News mentions
0No linked articles in our index yet.