Web: https://www.cisecurity.org/advisory/a-vulnerability-in-schneider-electric-modicon-plcs-could-allow-for-remote-code-execution_2021-090

Jan. 7, 2022, 10:40 a.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center cisecurity.org

A vulnerability has been discovered in Schneider Electric Modicon PLCs, which could result in remote code execution. A Programmable Logic Controller, or PLC, is a ruggedized computer used for industrial automation. These controllers can automate a specific process, machine function, or even an entire production line. Successful exploitation of this vulnerability could allow for remote code execution within the context of a privileged process. Depending on the privileges associated with this application, an attacker could then install programs; view, change, …

code code execution remote remote code execution schneider vulnerability

More from cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

Staff Reverse Engineer

@ Dragos, Inc. | Remote - USA

Cybersecurity Engineer

@ Sigma Defense | San Diego, California, United States

Sr Staff Engineer/Principal Engineer(Security Researcher, Security Efficacy)

@ Netskope | Bengaluru, Karnataka, India

Information Security Manager - Zurich, CH

@ Scandit | Zurich

Senior Developer C/Go (Acronis Cyber Infrastructure)

@ Acronis | Belgrade, Stari Grad, Serbia

Intermediate Security Analyst

@ ATB Financial | Calgary, Alberta, Canada