ByteOS Network

NVD Vulnerability Details :

CVE-2017-6030

Modified

Source-ics-cert@hq.dhs.gov

Published At-30 Jun, 2017 | 03:29

Updated At-13 May, 2026 | 00:24

A Predictable Value Range from Previous Values issue was discovered in Schneider Electric Modicon PLCs Modicon M221, firmware versions prior to Version 1.5.0.0, Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The affected products generate insufficiently random TCP initial sequence numbers that may allow an attacker to predict the numbers from previous values. This may allow an attacker to spoof or disrupt TCP connections.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Primary	2.0	6.4	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:P

Type: Primary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Type: Primary

Version: 2.0

Base score: 6.4

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:N/C:N/I:P/A:P

CPE Matches

Weaknesses

CWE ID	Type	Source
CWE-343	Secondary	ics-cert@hq.dhs.gov
CWE-331	Primary	nvd@nist.gov

CWE ID: CWE-343

Type: Secondary

Source: ics-cert@hq.dhs.gov

CWE ID: CWE-331

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.securityfocus.com/bid/97254	ics-cert@hq.dhs.gov	Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02	ics-cert@hq.dhs.gov	Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/97254	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory US Government Resource

Hyperlink: http://www.securityfocus.com/bid/97254

Source: ics-cert@hq.dhs.gov

Resource:

Third Party Advisory

VDB Entry

Hyperlink: https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02

Source: ics-cert@hq.dhs.gov

Resource:

Third Party Advisory

US Government Resource

Hyperlink: http://www.securityfocus.com/bid/97254

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Third Party Advisory

VDB Entry

Hyperlink: https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Third Party Advisory

US Government Resource

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History