You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
managed switches
About this tag
Managed switches from Schneider Electric's Connexium, Modicon, and Modicon Redundancy lines are the subject of a security advisory concerning CVE-2024-3596, also known as BlastRADIUS. The vulnerability arises when administrators disable RADIUS Message-Authenticator protection, potentially exposing industrial Ethernet networks to authentication bypass attacks. This issue highlights the importance of proper configuration in managed switches, particularly in industrial environments such as plant operations, water utilities, and energy facilities. The advisory, republished by CISA, carries a CVSS 3.1 score of 9, underscoring the critical nature of ensuring RADIUS security settings are correctly enabled on managed switches.
Schneider Electric’s April 14, 2026 advisory, republished by CISA on June 9, warns that all versions of its Connexium, Modicon, and Modicon Redundancy managed switches can be exposed to CVE-2024-3596 if administrators disable RADIUS Message-Authenticator protection. The alert is not about a...