Cyber Resilience

CVE-2021-22788

HighUpdated

Published: 11 February 2022

Published
11 February 2022
Modified
29 May 2026
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0145 81.2th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2021-22788 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Schneider-Electric Modicon M340 Bmxp342020 Firmware. Its CVSS base score is 7.5 (High).

Operationally, ranked in the top 18.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A CWE-787: Out-of-bounds Write vulnerability exists that could cause denial of service when an attacker sends a specially crafted HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340…

more

X80 Ethernet Communication Modules: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (All Versions), Modicon Premium Processors with integrated Ethernet (Copro): TSXP574634, TSXP575634, TSXP576634 (All Versions), Modicon Quantum Processors with Integrated Ethernet (Copro): 140CPU65xxxxx (All Versions), Modicon Quantum Communication Modules: 140NOE771x1, 140NOC78x00, 140NOC77101 (All Versions), Modicon Premium Communication Modules: TSXETY4103, TSXETY5103 (All Versions)

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

schneider-electric
modicon m340 bmxp342020 firmware
≤ 3.40
schneider-electric
bmxnoe0100 firmware
all versions
schneider-electric
bmxnoe0110 firmware
all versions
schneider-electric
bmxnoc0401 firmware
all versions
schneider-electric
bmxnor0200h rtu firmware
all versions
schneider-electric
tsxp574634 firmware
all versions
schneider-electric
tsxp575634 firmware
all versions
schneider-electric
tsxp576634 firmware
all versions
schneider-electric
140cpu65150 firmware
all versions
schneider-electric
140noe771x1 firmware
all versions
+4 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-787

Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.

References