← volver
CVE-2017-6017

CVE-2017-6017

EPSS 4.8%CWE-400
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 4.8%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
30 jun 2017Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A Resource Exhaustion issue was discovered in Schneider Electric Modicon M340 PLC BMXNOC0401, BMXNOE0100, BMXNOE0110, BMXNOE0110H, BMXNOR0200H, BMXP341000, BMXP342000, BMXP3420102, BMXP3420102CL, BMXP342020, BMXP342020H, BMXP342030, BMXP3420302, BMXP3420302H, and BMXP342030H. A remote attacker could send a specially crafted set of packets to the PLC causing it to freeze, requiring the operator to physically press the reset button on the PLC in order to recover.
Productos afectados
n/a · Schneider Electric Modicon M340 PLC

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://ics-cert.us-cert.gov/advisories/ICSA-17-054-03https://www.schneider-electric.com/en/download/document/SEVD-2017-048-02/http://www.securityfocus.com/bid/96414