Security researchers have disclosed two new vulnerabilities affecting Schneider Electric Modicon programmable logic controllers (PLCs) that could allow for authentication bypass and remote code execution. The flaws, tracked asCVE-2022-45788(CVSS score: 7.5) andCVE-2022-45789(CVSS score: 8.1), are part of abroader collectionofsecurity defectstracked by Forescout as OT:ICEFALL. Successful