CVE-2021-22779

critical

Published 2021-07-14 · Modified 2026-05-29

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

9.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS v4 NEW

—

not yet in upstream

VIR risk

9.1

Description

Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Control Expert V15.0 SP1, EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), SCADAPack RemoteConnect for x70 (all versions), Modicon M580 CPU (all versions - part numbers BMEP* and BMEH*), Modicon M340 CPU (all versions - part numbers BMXP34*), that could cause unauthorized access in read and write mode to the controller by spoofing the Modbus communication between the engineering software and the controller.

Predictions

Exploit likelihood

94%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or — if you've already worked around this in production — publish your fix to the community-verified tier.

✚ Propose a mitigation on Community → Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

Application impact

Vendor	Product	Versions	Fixed
schneider-electric	ecostruxure_control_expert	`{"endExcluding":"15.0"}`	`15.0`
schneider-electric	ecostruxure_control_expert	`15.0`
schneider-electric	ecostruxure_process_expert
schneider-electric	remoteconnect
schneider-electric	modicon_m580_bmep581020	`-`
schneider-electric	modicon_m580_bmep581020h	`-`
schneider-electric	modicon_m580_bmep582020	`-`
schneider-electric	modicon_m580_bmep582020h	`-`
schneider-electric	modicon_m580_bmep582040	`-`
schneider-electric	modicon_m580_bmep582040h	`-`
schneider-electric	modicon_m580_bmep582040s	`-`
schneider-electric	modicon_m580_bmep583020	`-`
schneider-electric	modicon_m580_bmep583040	`-`
schneider-electric	modicon_m580_bmep584020	`-`
schneider-electric	modicon_m580_bmep584040	`-`
schneider-electric	modicon_m580_bmep584040s	`-`
schneider-electric	modicon_m580_bmep585040	`-`
schneider-electric	modicon_m580_bmep585040c	`-`
schneider-electric	modicon_m580_bmep586040	`-`
schneider-electric	modicon_m580_bmep586040c	`-`
schneider-electric	modicon_m580_bmeh582040	`-`
schneider-electric	modicon_m580_bmeh582040c	`-`
schneider-electric	modicon_m580_bmeh582040s	`-`
schneider-electric	modicon_m580_bmeh584040	`-`
schneider-electric	modicon_m580_bmeh584040c	`-`
schneider-electric	modicon_m580_bmeh584040s	`-`
schneider-electric	modicon_m580_bmeh586040	`-`
schneider-electric	modicon_m580_bmeh586040c	`-`
schneider-electric	modicon_m580_bmeh586040s	`-`
schneider-electric	modicon_m340_bmxp341000	`-`
schneider-electric	modicon_m340_bmxp342010	`-`
schneider-electric	modicon_m340_bmxp342020	`-`
schneider-electric	modicon_m340_bmxp342030	`-`

References

http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-194-01

CWEs

CWE-290

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.