Schneider-electric

140cpu65160s Firmware

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-7477

  • EPSS 0.54%
  • Veröffentlicht 23.03.2020 20:15:12
  • Zuletzt bearbeitet 21.11.2024 05:37:13

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethernet – 140CPU65xxxxx (all Versions), and Premium proc...

7.5

CVE-2019-6856

  • EPSS 0.37%
  • Veröffentlicht 06.01.2020 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing ...

7.5

CVE-2019-6857

  • EPSS 0.37%
  • Veröffentlicht 06.01.2020 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the contro...

7.5

CVE-2018-7794

  • EPSS 0.39%
  • Veröffentlicht 06.01.2020 23:15:10
  • Zuletzt bearbeitet 21.11.2024 04:12:44

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading ...

8.8

CVE-2018-7240

  • EPSS 0.44%
  • Veröffentlicht 18.04.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:51

A vulnerability exists in Schneider Electric's Modicon Quantum in all versions of the communication modules which could allow arbitrary code execution. An FTP command used to upgrade the firmware of the module can be misused to cause a denial of serv...

10

CVE-2018-7241

  • EPSS 0.58%
  • Veröffentlicht 18.04.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:51

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules.

9.8

CVE-2018-7242

  • EPSS 0.26%
  • Veröffentlicht 18.04.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:51

Vulnerable hash algorithms exists in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules. The algorithm used to encrypt the password is vulnerable to hash collis...

7.5

CVE-2018-7759

  • EPSS 0.82%
  • Veröffentlicht 18.04.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:40

A buffer overflow vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. The buffer overflow vulnerability is caused by the length of the source string specified (instead of the buffer size) as th...

9.8

CVE-2018-7760

  • EPSS 0.15%
  • Veröffentlicht 18.04.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:41

An authorization bypass vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. Requests to CGI functions allow malicious users to bypass authorization.

9.8

CVE-2018-7761

  • EPSS 0.58%
  • Veröffentlicht 18.04.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:41

A vulnerability exists in the HTTP request parser in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200 which could allow arbitrary code execution.