CVE-2013-2763

EPSS 0.88%
Published 04.04.2013 11:58:49
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

The Schneider Electric M340 PLC modules allow remote attackers to cause a denial of service (resource consumption) via unspecified vectors.  NOTE: the vendor reportedly disputes this issue because it "could not be duplicated" and "an attacker could not remotely exploit this observed behavior to deny PLC control functions.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Schneider-electric ≫ Modicon M340 Bmx Noc 0401 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx Noc 0401 Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0100 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0100 Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0100h Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0100h Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0110 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0110 Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0110h Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx Noe 0110h Version-

Schneider-electric ≫ Modicon M340 Bmx Nor 0200h Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx Nor 0200h Version-

Schneider-electric ≫ Modicon M340 Bmx P34-2010 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx P34-2010 Version-

Schneider-electric ≫ Modicon M340 Bmx P34-2030 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmx P34-2030 Version-

Schneider-electric ≫ Modicon M340 Bmxp341000 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmxp341000 Version-

Schneider-electric ≫ Modicon M340 Bmxp342010 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmxp342010 Version-

Schneider-electric ≫ Modicon M340 Bmxp342020 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmxp342020 Version-

Schneider-electric ≫ Modicon M340 Bmxp342030 Firmware Version-

Schneider-electric ≫ Modicon M340 Bmxp342030 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.88%	0.732

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

http://ics-cert.us-cert.gov/pdf/ICSA-13-077-01A.pdf

Third Party Advisory

US Government Resource

Broken Link

https://nvd.nist.gov/vuln/detail/CVE-2013-2763

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-2763

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-2763

EUVD