Vulnerability identifier: #VU31814

Vulnerability risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-7491

CWE-ID: CWE-284

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Tricon Communications Module (TCM) Models 4351
Hardware solutions / Other hardware appliances
Tricon Communications Module (TCM) Models 4352
Hardware solutions / Other hardware appliances
Tricon Communications Module (TCM) Models 4351A/B
Hardware solutions / Other hardware appliances
Tricon Communications Module (TCM) Models 4352A/B
Hardware solutions / Other hardware appliances

Vendor: Schneider Electric

Description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in a legacy debug port account. A remote attacker can bypass implemented security restrictions and gain unauthorized access to the application.

Note: This vulnerability affects the following versions:

• 10.2.0 through 10.5.3

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Tricon Communications Module (TCM) Models 4351: 10.5.3

Tricon Communications Module (TCM) Models 4352: 10.5.3

Tricon Communications Module (TCM) Models 4351A/B: 10.5.3

Tricon Communications Module (TCM) Models 4352A/B: 10.5.3

---

External links
http://www.se.com/ww/en/download/document/SESB-2020-105-01/

---

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.