You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cwe-552
About this tag
The tag cwe-552 refers to a Common Weakness Enumeration entry for files or directories accessible to external parties. On WindowsForum.com, discussions tagged with cwe-552 focus on industrial control system security, specifically a Schneider Electric Modicon M340 vulnerability (CVE-2024-5056) affecting BMXNOE0100 and BMXNOE0110 Ethernet modules. The weakness can expose files or directories to unauthorized access, potentially blocking firmware updates or disrupting embedded web and FTP services. Threads cover patch deployment, network-level mitigations, and OT security best practices for affected hardware. While the tag originates from CWE, forum content emphasizes practical remediation for Windows-based management systems and industrial network environments.
Schneider Electric has confirmed a security issue affecting the Modicon M340 family and two Ethernet communication modules — BMXNOE0100 and BMXNOE0110 — that can expose files or directories to external parties and, in some configurations, can prevent firmware updates or disrupt the embedded...