CVE-2022-0222 Information

Description

A CWE-269: Improper Privilege Management vulnerability exists that could cause a denial of service of the Ethernet communication of the controller when sending a specific request over SNMP. Affected products: Modicon M340 CPUs(BMXP34 versions prior to V3.40) Modicon M340 X80 Ethernet Communication modules:BMXNOE0100 (H) BMXNOE0110 (H) BMXNOR0200H RTU(BMXNOE all versions)(BMXNOR versions prior to v1.7 IR24)

Reference

https://www.se.com/us/en/download/document/SEVD-2022-102-02/