CVE-2022-22724

CVE-2022-22724

Vendor N/A
Product Modicon M340 CPUs: BMXP34 (All Versions)
Weakness CWE-400
Published February 4, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service on ports 80 (HTTP) and 502 (Modbus), when sending a large number of TCP RST or FIN packets to any open TCP port of the PLC. Affected Product: Modicon M340 CPUs: BMXP34 (All Versions)

Key dates

02Disclosure timeline

February 4, 2022 CVE published
August 3, 2024 Record updated