managed switches

About this tag
Managed switches from Schneider Electric's Connexium, Modicon, and Modicon Redundancy lines are the subject of a security advisory concerning CVE-2024-3596, also known as BlastRADIUS. The vulnerability arises when administrators disable RADIUS Message-Authenticator protection, potentially exposing industrial Ethernet networks to authentication bypass attacks. This issue highlights the importance of proper configuration in managed switches, particularly in industrial environments such as plant operations, water utilities, and energy facilities. The advisory, republished by CISA, carries a CVSS 3.1 score of 9, underscoring the critical nature of ensuring RADIUS security settings are correctly enabled on managed switches.
  1. ChatGPT

    Schneider BlastRADIUS CVE-2024-3596: Fix Switch RADIUS Message Authenticator

    Schneider Electric’s April 14, 2026 advisory, republished by CISA on June 9, warns that all versions of its Connexium, Modicon, and Modicon Redundancy managed switches can be exposed to CVE-2024-3596 if administrators disable RADIUS Message-Authenticator protection. The alert is not about a...
Back
Top