Detections
Analytics

Schneider Electric Modicon Path Traversal (CVE-2014-0754)

high Tenable OT Security Plugin ID 500039

Synopsis

The remote OT asset is affected by a vulnerability.

Description

Directory traversal vulnerability in SchneiderWEB on Schneider Electric Modicon PLC Ethernet modules 140CPU65x Exec before 5.5, 140NOC78x Exec before 1.62, 140NOE77x Exec before 6.2, BMXNOC0401 before 2.05, BMXNOE0100 before 2.9, BMXNOE0110x Exec before 6.0, TSXETC101 Exec before 2.04, TSXETY4103x Exec before 5.7, TSXETY5103x Exec before 5.9, TSXP57x ETYPort Exec before 5.7, and TSXP57x Ethernet Copro Exec before 5.5 allows remote attackers to visit arbitrary resources via a crafted HTTP request.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

See Also

http://www.nessus.org/u?1c49275b

https://ics-cert.us-cert.gov/advisories/ICSA-14-273-01

http://www.securityfocus.com/bid/70193

Plugin Details

Severity: High

ID: 500039

Version: 1.8

Type: remote

Family: Tenable.ot

Published: 2/7/2022

Updated: 9/4/2024

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2014-0754

CVSS v3

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:schneider-electric:tsxp573623mc_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxnoc0401_firmware:-, cpe:/o:schneider-electric:171ccc98030_firmware:-, cpe:/o:schneider-electric:tsxp572634m_firmware:-, cpe:/o:schneider-electric:tsxetc0101_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxnoe0100_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxnor0200h_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxp342020_firmware:-, cpe:/o:schneider-electric:tsxwmy100_firmware:-, cpe:/o:schneider-electric:tsxetc100_firmware:-, cpe:/o:schneider-electric:tsxp573634m_firmware:-, cpe:/o:schneider-electric:tsxety5103_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxnoe0110_firmware:-, cpe:/o:schneider-electric:tsxp574634m_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxnoe0110h_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxp342020h_firmware:-, cpe:/o:schneider-electric:modicon_m580_bmxnoc0402_firmware:-, cpe:/o:schneider-electric:tsxp571634m_firmware:-, cpe:/o:schneider-electric:tsxp575634m_firmware:-, cpe:/o:schneider-electric:171ccc96030_firmware:-, cpe:/o:schneider-electric:171ccc96020_firmware:-, cpe:/o:schneider-electric:171ccc98020_firmware:-, cpe:/o:schneider-electric:171ccc96030c_firmware:-, cpe:/o:schneider-electric:tsxety4103_firmware:-, cpe:/o:schneider-electric:tsxety5103c_firmware:-, cpe:/o:schneider-electric:tsxp576634m_firmware:-, cpe:/o:schneider-electric:171ccc96020c_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxp342030_firmware:-, cpe:/o:schneider-electric:tsxp574823m_firmware:-, cpe:/o:schneider-electric:tsxwmy100c_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxp3420302_firmware:-, cpe:/o:schneider-electric:tsxp574823mc_firmware:-, cpe:/o:schneider-electric:tsxety110wsc_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxp3420302h_firmware:-, cpe:/o:schneider-electric:tsxety4103c_firmware:-, cpe:/o:schneider-electric:tsxp574823am_firmware:-, cpe:/o:schneider-electric:modicon_m340_bmxp342030h_firmware:-, cpe:/o:schneider-electric:tsxety110ws_firmware:-

Required KB Items: Tenable.ot/Schneider

Exploit Ease: No known exploits are available

Patch Publication Date: 10/3/2014

Vulnerability Publication Date: 10/3/2014

Reference Information

CVE: CVE-2014-0754

CWE: 22

ICSA: 14-273-01