7.5
CVE-2018-7759
- EPSS 0.82%
- Published 18.04.2018 20:29:00
- Last modified 21.11.2024 04:12:40
- Source cybersecurity@se.com
- Teams watchlist Login
- Open Login
A buffer overflow vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. The buffer overflow vulnerability is caused by the length of the source string specified (instead of the buffer size) as the number of bytes to be copied.
Data is provided by the National Vulnerability Database (NVD)
Schneider-electric ≫ Bmxnor0200 Firmware Version-
Schneider-electric ≫ Bmxnor0200h Firmware Version-
Schneider-electric ≫ 140cpu65150 Firmware Version-
Schneider-electric ≫ 140cpu31110 Firmware Version-
Schneider-electric ≫ 140cpu43412u Firmware Version-
Schneider-electric ≫ 140cpu65160 Firmware Version-
Schneider-electric ≫ 140cpu65260 Firmware Version-
Schneider-electric ≫ 140cpu65860 Firmware Version-
Schneider-electric ≫ 140cpu65160s Firmware Version-
Schneider-electric ≫ 140cpu65150c Firmware Version-
Schneider-electric ≫ 140cpu31110c Firmware Version-
Schneider-electric ≫ 140cpu43412uc Firmware Version-
Schneider-electric ≫ 140cpu65160c Firmware Version-
Schneider-electric ≫ 140cpu65160c Firmware Version-
Schneider-electric ≫ 140cpu65260c Firmware Version-
Schneider-electric ≫ 140cpu65860c Firmware Version-
Schneider-electric ≫ Tsxh5724m Firmware Version-
Schneider-electric ≫ Tsxh5744m Firmware Version-
Schneider-electric ≫ Tsxp57104m Firmware Version-
Schneider-electric ≫ Tsxp57154m Firmware Version-
Schneider-electric ≫ Tsxp571634m Firmware Version-
Schneider-electric ≫ Tsxp57204m Firmware Version-
Schneider-electric ≫ Tsxp57254m Firmware Version-
Schneider-electric ≫ Tsxp572634m Firmware Version-
Schneider-electric ≫ Tsxp57304m Firmware Version-
Schneider-electric ≫ Tsxp57354m Firmware Version-
Schneider-electric ≫ Tsxp573634m Firmware Version-
Schneider-electric ≫ Tsxp57454m Firmware Version-
Schneider-electric ≫ Tsxp574634m Firmware Version-
Schneider-electric ≫ Tsxp575634m Firmware Version-
Schneider-electric ≫ Tsxp576634m Firmware Version-
Schneider-electric ≫ Tsxh5724mc Firmware Version-
Schneider-electric ≫ Tsxh5744mc Firmware Version-
Schneider-electric ≫ Tsxp57104mc Firmware Version-
Schneider-electric ≫ Tsxp57154mc Firmware Version-
Schneider-electric ≫ Tsxp571634mc Firmware Version-
Schneider-electric ≫ Tsxp57204mc Firmware Version-
Schneider-electric ≫ Tsxp57254mc Firmware Version-
Schneider-electric ≫ Tsxp572634mc Firmware Version-
Schneider-electric ≫ Tsxp57304mc Firmware Version-
Schneider-electric ≫ Tsxp57354mc Firmware Version-
Schneider-electric ≫ Tsxp573634mc Firmware Version-
Schneider-electric ≫ Tsxp57454mc Firmware Version-
Schneider-electric ≫ Tsxp574634mc Firmware Version-
Schneider-electric ≫ Tsxp57554mc Firmware Version-
Schneider-electric ≫ Tsxp575634mc Firmware Version-
Schneider-electric ≫ Tsxp576634mc Firmware Version-
Schneider-electric ≫ Tsxh5724m Firmware Version-
Schneider-electric ≫ Tsxh5744mc Firmware Version-
Schneider-electric ≫ Tsxp57554m Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.82% | 0.721 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.