Schneider-electric

Modicon M340 Firmware

39 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-5056

  • EPSS 0.13%
  • Veröffentlicht 12.06.2024 12:15:10
  • Zuletzt bearbeitet 21.11.2024 09:46:52

CWE-552: Files or Directories Accessible to External Parties vulnerability exists which may prevent user to update the device firmware and prevent proper behavior of the webserver when specific files or directories are removed from the filesystem.

6.5

CVE-2023-25620

  • EPSS 0.06%
  • Veröffentlicht 19.04.2023 09:15:07
  • Zuletzt bearbeitet 21.11.2024 07:49:50

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious project file is loaded onto the controller by an authenticated user.

7.5

CVE-2023-25619

  • EPSS 0.07%
  • Veröffentlicht 19.04.2023 08:15:07
  • Zuletzt bearbeitet 05.02.2025 16:15:35

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when communicating over the Modbus TCP protocol.

9.8

CVE-2020-7475

  • EPSS 0.57%
  • Veröffentlicht 23.03.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:37:13

A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), reflective DLL, vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M...

7.5

CVE-2019-6857

  • EPSS 0.37%
  • Veröffentlicht 06.01.2020 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the contro...

7.5

CVE-2019-6856

  • EPSS 0.37%
  • Veröffentlicht 06.01.2020 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing ...

7.5

CVE-2018-7794

  • EPSS 0.39%
  • Veröffentlicht 06.01.2020 23:15:10
  • Zuletzt bearbeitet 21.11.2024 04:12:44

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading ...

6.5

CVE-2019-6846

  • EPSS 0.22%
  • Veröffentlicht 29.10.2019 19:15:22
  • Zuletzt bearbeitet 21.11.2024 04:47:16

A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause information disclosure when using the FTP protocol.

4.9

CVE-2019-6844

  • EPSS 0.38%
  • Veröffentlicht 29.10.2019 19:15:22
  • Zuletzt bearbeitet 21.11.2024 04:47:15

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service atack on the PLC when upgrading the controller...

7.5

CVE-2019-6845

  • EPSS 0.21%
  • Veröffentlicht 29.10.2019 19:15:22
  • Zuletzt bearbeitet 21.11.2024 04:47:16

A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580, Modicon M340, Modicon Premium , Modicon Quantum (all firmware versions), which could cause the disclosure of information when transferring applications t...