Armis unveils new Modipwn vulnerability in Schneider Electric PLCs

Researchers at Armis have announced the discovery of an authentication bypass vulnerability in Schneider Electric’s Modicon programmable logic controllers (PLCs) that can lead to remote-code-execution (RCE). The vulnerability, dubbed Modipwn, allows for a complete takeover of impacted devices by leveraging the UMAS protocol, and impacts Modicon M340, M580 and other models from the Modicon series. Millions of devices use these PLCs and are now […]

Armis unveils new Modipwn vulnerability in Schneider Electric PLCs Read More »