A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T200 ((Modbus) SC2-04MOD-07000100 and earlier), Easergy T200 ((IEC104) SC2-04IEC-07000100 and earlier), and Easergy T200 ((DNP3) SC2-04DNP-07000102 and earlier) that could cause unauthorized operation when authentication is bypassed.
2021-07-21T15:15:15.117
2024-11-21T05:50:38.243
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | schneider-electric | t200i_firmware | ≤ sc2-04mod-07000100 | Yes |
| Hardware | schneider-electric | t200i | - | No |
| Operating System | schneider-electric | t200i_firmware | ≤ sc2-04iec-07000100 | Yes |
| Hardware | schneider-electric | t200i | - | No |
| Operating System | schneider-electric | t200i_firmware | ≤ sc2-04dnp-07000102 | Yes |
| Hardware | schneider-electric | t200i | - | No |
| Operating System | schneider-electric | t200e_firmware | ≤ sc2-04mod-07000100 | Yes |
| Hardware | schneider-electric | t200e | - | No |
| Operating System | schneider-electric | t200e_firmware | ≤ sc2-04iec-07000100 | Yes |
| Hardware | schneider-electric | t200e | - | No |
| Operating System | schneider-electric | t200e_firmware | ≤ sc2-04dnp-07000102 | Yes |
| Hardware | schneider-electric | t200e | - | No |
| Operating System | schneider-electric | t200p_firmware | ≤ sc2-04mod-07000100 | Yes |
| Hardware | schneider-electric | t200p | - | No |
| Operating System | schneider-electric | t200p_firmware | ≤ sc2-04iec-07000100 | Yes |
| Hardware | schneider-electric | t200p | - | No |
| Operating System | schneider-electric | t200p_firmware | ≤ sc2-04dnp-07000102 | Yes |
| Hardware | schneider-electric | t200p | - | No |