Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-22610

A CWE-863: Incorrect Authorization vulnerability exists that could cause Denial of Service against the Geo SCADA server when specific messages are sent to the server over the database server TCP port.

Published

2023-01-31T17:15:08.827

Last Modified

2024-11-21T07:45:03.000

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.1 (CRITICAL)

Weaknesses

Type: Secondary
CWE-863
Type: Secondary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	-	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7268.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7322.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7429.2	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7457.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7488.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7522.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7545.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7578.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7613.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7641.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7690.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7714.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7742.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7777.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7808.2	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7840.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7875.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7896.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7936.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.7980.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8015.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8108.2	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8122.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8155.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8172.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8197.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8220.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2019	81.8267.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	-	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7551.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7578.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7613.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7641.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7692.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7717.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7742.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7787.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7809.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7840.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7875.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7913.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7936.2	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.7980.2	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8017.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8108.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8122.2	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8155.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8181.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8197.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8221.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2020	83.8267.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	-	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8027.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8108.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8120.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8158.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8182.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8197.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8218.1	Yes
Application	schneider-electric	ecostruxure_geo_scada_expert_2021	84.8269.1	Yes

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-010-02_Geo_SCADA_Security_Notification.pdf Mitigation, Patch, Vendor Advisory ([email protected])
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-010-02_Geo_SCADA_Security_Notification.pdf Mitigation, Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)