OTPulse
FeedAboutContact

Modicon M258 Logic Controllers and SoMachine/ SoMachine Motion Software

Monitor4.5SEVD-2020-343-09Dec 8, 2020
Attack VectorAdjacent
Auth RequiredHigh
ComplexityLow
User InteractionNone needed
Summary

Schneider Electric reports a buffer overflow vulnerability in Modicon M258 Logic Controllers and SoMachine/SoMachine Motion programming software. The vulnerability could allow arbitrary code execution or denial of service if the controller is compromised through buffer overflow attack. Affected: M258 firmware versions prior to 5.0.4.11 and all versions of SoMachine/SoMachine Motion software.

What this means
What could happen
An attacker who can exploit this buffer overflow could execute arbitrary code on the M258 controller, potentially altering programmed logic, process setpoints, or halting manufacturing operations entirely.
Who's at risk
Manufacturing and process automation operators using Modicon M258 Logic Controllers for machinery control, as well as system integrators and automation engineers deploying SoMachine/SoMachine Motion software to program and manage M258 controllers in factories, assembly lines, and other automated production environments.
How it could be exploited
An attacker would need to send specially crafted input or commands to the M258 controller or inject malicious code through the SoMachine/SoMachine Motion software to trigger a buffer overflow condition. This could corrupt controller memory and allow code execution, allowing modification of the controller's runtime behavior or termination of operations.
Prerequisites
  • Access to the Modicon M258 or the SoMachine/SoMachine Motion software environment on an engineering workstation
  • Ability to send input to the vulnerable component or load malicious project code through the programming software
buffer overflow vulnerabilitypotential arbitrary code executionaffects safety-critical devicedenial of service possible
Exploitability
Low exploit probability (EPSS 0.3%)
Affected products (2)
2 with fix
ProductAffected VersionsFix Status
SoMachine/SoMachine Motion software All versionsAll versionsEcoStruxure Machine Expert (replacement product)
Modicon M258 Firmware All<5.0.4.115.0.4.11
Remediation & Mitigation
0/3
Do now
0/1
HARDENINGRestrict access to SoMachine/SoMachine Motion software and M258 controller management interfaces to authorized engineering personnel only
Schedule — requires maintenance window
0/2

Patching may require device reboot — plan for process interruption

HOTFIXUpdate Modicon M258 Logic Controller firmware to version 5.0.4.11 or later using Schneider Electric Software Update (SESU); plan for controller reboot during maintenance window
HOTFIXMigrate from legacy SoMachine/SoMachine Motion software to EcoStruxure Machine Expert, which addresses the buffer overflow issue
View full Schneider Electric advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/0a7a80b3-2778-4b4a-a62c-1a767da114d5
Modicon M258 Logic Controllers and SoMachine/ SoMachine Motion Software | CVSS 4.5 - OTPulse