Description Preview
A vulnerability has been identified in Schneider Electric Easergy T200 devices where critical functions lack proper authentication mechanisms. This vulnerability (CWE-306: Missing Authentication for Critical Function) affects multiple versions of the device across different communication protocols including Modbus, IEC104, and DNP3. An attacker could potentially bypass authentication to perform unauthorized operations on affected devices, potentially compromising industrial control systems.
Overview
The vulnerability exists in Schneider Electric Easergy T200 devices running firmware versions SC2-04MOD-07000100 and earlier (Modbus protocol), SC2-04IEC-07000100 and earlier (IEC104 protocol), and SC2-04DNP-07000102 and earlier (DNP3 protocol). The issue stems from a missing authentication mechanism for critical functions, allowing potential attackers to bypass security controls and execute unauthorized operations. This type of vulnerability is particularly concerning in industrial environments where Easergy T200 devices are commonly deployed for remote terminal unit (RTU) functions in electrical distribution networks. Unauthorized access could potentially lead to disruption of electrical distribution systems or unauthorized control of connected equipment.
Remediation
- Update affected Easergy T200 devices to the latest firmware versions as recommended by Schneider Electric in their security advisory.
- If immediate updates are not possible, implement network segmentation to isolate affected devices.
- Restrict network access to the devices using firewalls and access control lists.
- Monitor network traffic to and from these devices for suspicious activities.
- Implement additional authentication mechanisms at the network level where possible.
- Follow Schneider Electric's specific remediation guidance provided in their security advisory (SEVD-2021-194-05).
- Conduct a security assessment to identify any signs of compromise if these devices have been exposed.
References
- Schneider Electric Security Advisory: http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-194-05
- CWE-306: Missing Authentication for Critical Function: https://cwe.mitre.org/data/definitions/306.html
- MITRE CVE-2021-22772: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22772
- Schneider Electric Easergy T200 Product Information: https://www.se.com/ww/en/product-range/61915-easergy-t200/
Industry ExposureMost to leastThis section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
- Accommodation & Food ServicesAccommodation & Food Services
- Administrative, Support, Waste Management & Remediation ServicesAdministrative, Support, Waste Management & Remediation Services
- Agriculture, Forestry Fishing & HuntingAgriculture, Forestry Fishing & Hunting
- Arts, Entertainment & RecreationArts, Entertainment & Recreation
- ConstructionConstruction
- Educational ServicesEducational Services
- Finance and InsuranceFinance and Insurance
- Health Care & Social AssistanceHealth Care & Social Assistance
- InformationInformation
- Management of Companies & EnterprisesManagement of Companies & Enterprises
- ManufacturingManufacturing
- MiningMining
- Other Services (except Public Administration)Other Services (except Public Administration)
- Professional, Scientific, & Technical ServicesProfessional, Scientific, & Technical Services
- Public AdministrationPublic Administration
- Real Estate Rental & LeasingReal Estate Rental & Leasing
- Retail TradeRetail Trade
- Transportation & WarehousingTransportation & Warehousing
- UtilitiesUtilities
- Wholesale TradeWholesale Trade
