CVSS: 7.2EPSS: 0%CPEs: 26EXPL: 0CVE-2021-30066
https://notcve.org/view.php?id=CVE-2021-30066
03 Apr 2022 — On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an arbitrary firmware image can be loaded because firmware signature verification (for a USB stick) can be bypassed. NOTE: this issue exists because of an incomplete fix of CVE-2017-11400. En Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 versiones anteriores a 03.23, TCSEFEA23F3F20/21, y Belden Tofino Xenon Security Appliance, puede cargarse una imagen de ... • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.5EPSS: 0%CPEs: 26EXPL: 0CVE-2021-30065
https://notcve.org/view.php?id=CVE-2021-30065
03 Apr 2022 — On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, crafted ModBus packets can bypass the ModBus enforcer. NOTE: this issue exists because of an incomplete fix of CVE-2017-11401. En Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 versiones hasta 03.23, TCSEFEA23F3F20/21 y Belden Tofino Xenon Security Appliance, los paquetes ModBus diseñados pueden omitir el ModBus enforcer. NOTA: este problema se presenta deb... • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05 •
CVSS: 9.8EPSS: 0%CPEs: 26EXPL: 0CVE-2021-30064
https://notcve.org/view.php?id=CVE-2021-30064
03 Apr 2022 — On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an SSH login can succeed with hardcoded default credentials (if the device is in the uncommissioned state). En Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 versiones hasta 03.23, TCSEFEA23F3F20/21 y Belden Tofino Xenon Security Appliance, un inicio de sesión SSH puede tener éxito con credenciales embebidas predeterminadas (si el dispositivo está en el est... • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05 • CWE-798: Use of Hard-coded Credentials •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2021-30063
https://notcve.org/view.php?id=CVE-2021-30063
03 Apr 2022 — On Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 before 03.23 and Belden Tofino Xenon Security Appliance, crafted OPC packets can cause an OPC enforcer denial of service. En Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 versiones hasta 03.23 y Belden Tofino Xenon Security Appliance, los paquetes OPC diseñados pueden provocar una denegación de servicio del ejecutor OPC • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05 •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2021-30062
https://notcve.org/view.php?id=CVE-2021-30062
03 Apr 2022 — On Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 before 03.23 and Belden Tofino Xenon Security Appliance, crafted OPC packets can bypass the OPC enforcer. En Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 versiones anteriores a 03.23 y Belden Tofino Xenon Security Appliance, los paquetes OPC diseñados pueden omitir el reforzador OPC • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05 •
CVSS: 7.2EPSS: 0%CPEs: 26EXPL: 0CVE-2021-30061
https://notcve.org/view.php?id=CVE-2021-30061
03 Apr 2022 — On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick. En Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 versiones anteriores a 03.23, TCSEFEA23F3F20/21, y Belden Tofino Xenon Security Appliance, los atacantes físicamente próximos pueden ejecutar código por medio de un archivo diseñado en una memoria USB • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05 •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2017-11402
https://notcve.org/view.php?id=CVE-2017-11402
20 Nov 2017 — An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. Design flaws in OPC classic and in custom netfilter modules allow an attacker to remotely activate rules on the firewall and to connect to any TCP port of a protected asset, thus bypassing the firewall. The attack methodology is a crafted OPC dynamic port shift. Se ha descubierto un problema en las versiones anteriores a la 03.2.00 de Belden Hirschmann Tofino Xenon Security Appliance. Los fallos de diseño e... • https://github.com/airbus-seclab/security-advisories/blob/master/belden/tofino.txt • CWE-20: Improper Input Validation •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2017-11400
https://notcve.org/view.php?id=CVE-2017-11400
20 Nov 2017 — An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. An incomplete firmware signature allows a local attacker to upgrade the equipment (kernel, file system) with unsigned, attacker-controlled, data. This occurs because the appliance_config file is signed but the .tar.sec file is unsigned. Se ha descubierto un problema en las versiones anteriores a la 03.2.00 de Belden Hirschmann Tofino Xenon Security Appliance. Una firma incompleta del firmware permite que un... • https://github.com/airbus-seclab/security-advisories/blob/master/belden/tofino.txt • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-11401
https://notcve.org/view.php?id=CVE-2017-11401
20 Nov 2017 — An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. Improper handling of the mbap.length field of ModBus packets in the ModBus DPI filter allows an attacker to send malformed/crafted packets to a protected asset, bypassing function code filtering. Se ha descubierto un problema en las versiones anteriores a la 03.2.00 de Belden Hirschmann Tofino Xenon Security Appliance. La manipulación incorrecta del campo mbap.length de paquetes ModBus en el filtro ModBus D... • https://github.com/airbus-seclab/security-advisories/blob/master/belden/tofino.txt •