Schneider-electric

140cpu65160 Firmware

13 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-7535

  • EPSS 0.43%
  • Published 11.12.2020 01:15:12
  • Last modified 21.11.2024 05:37:19

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules...

9.8

CVE-2020-7540

  • EPSS 0.31%
  • Published 11.12.2020 01:15:12
  • Last modified 21.11.2024 05:37:20

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), ...

7.5

CVE-2020-7477

  • EPSS 0.54%
  • Published 23.03.2020 20:15:12
  • Last modified 21.11.2024 05:37:13

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethernet – 140CPU65xxxxx (all Versions), and Premium proc...

7.5

CVE-2019-6856

  • EPSS 0.37%
  • Published 06.01.2020 23:15:11
  • Last modified 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing ...

7.5

CVE-2019-6857

  • EPSS 0.37%
  • Published 06.01.2020 23:15:11
  • Last modified 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the contro...

7.5

CVE-2018-7794

  • EPSS 0.39%
  • Published 06.01.2020 23:15:10
  • Last modified 21.11.2024 04:12:44

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading ...

8.8

CVE-2018-7240

  • EPSS 0.44%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:11:51

A vulnerability exists in Schneider Electric's Modicon Quantum in all versions of the communication modules which could allow arbitrary code execution. An FTP command used to upgrade the firmware of the module can be misused to cause a denial of serv...

10

CVE-2018-7241

  • EPSS 0.58%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:11:51

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules.

9.8

CVE-2018-7242

  • EPSS 0.26%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:11:51

Vulnerable hash algorithms exists in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules. The algorithm used to encrypt the password is vulnerable to hash collis...

7.5

CVE-2018-7759

  • EPSS 0.82%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:12:40

A buffer overflow vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. The buffer overflow vulnerability is caused by the length of the source string specified (instead of the buffer size) as th...