Schneider-electric

140cpu65160s Firmware

11 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-7477

  • EPSS 0.54%
  • Published 23.03.2020 20:15:12
  • Last modified 21.11.2024 05:37:13

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethernet – 140CPU65xxxxx (all Versions), and Premium proc...

7.5

CVE-2019-6856

  • EPSS 0.37%
  • Published 06.01.2020 23:15:11
  • Last modified 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing ...

7.5

CVE-2019-6857

  • EPSS 0.37%
  • Published 06.01.2020 23:15:11
  • Last modified 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the contro...

7.5

CVE-2018-7794

  • EPSS 0.39%
  • Published 06.01.2020 23:15:10
  • Last modified 21.11.2024 04:12:44

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading ...

8.8

CVE-2018-7240

  • EPSS 0.44%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:11:51

A vulnerability exists in Schneider Electric's Modicon Quantum in all versions of the communication modules which could allow arbitrary code execution. An FTP command used to upgrade the firmware of the module can be misused to cause a denial of serv...

10

CVE-2018-7241

  • EPSS 0.58%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:11:51

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules.

9.8

CVE-2018-7242

  • EPSS 0.26%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:11:51

Vulnerable hash algorithms exists in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules. The algorithm used to encrypt the password is vulnerable to hash collis...

7.5

CVE-2018-7759

  • EPSS 0.82%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:12:40

A buffer overflow vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. The buffer overflow vulnerability is caused by the length of the source string specified (instead of the buffer size) as th...

9.8

CVE-2018-7760

  • EPSS 0.15%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:12:41

An authorization bypass vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. Requests to CGI functions allow malicious users to bypass authorization.

9.8

CVE-2018-7761

  • EPSS 0.58%
  • Published 18.04.2018 20:29:00
  • Last modified 21.11.2024 04:12:41

A vulnerability exists in the HTTP request parser in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200 which could allow arbitrary code execution.