Schneider-electric

Modicon M340 Firmware

39 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-5056

  • EPSS 0.13%
  • Published 12.06.2024 12:15:10
  • Last modified 21.11.2024 09:46:52

CWE-552: Files or Directories Accessible to External Parties vulnerability exists which may prevent user to update the device firmware and prevent proper behavior of the webserver when specific files or directories are removed from the filesystem.

6.5

CVE-2023-25620

  • EPSS 0.06%
  • Published 19.04.2023 09:15:07
  • Last modified 21.11.2024 07:49:50

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious project file is loaded onto the controller by an authenticated user.

7.5

CVE-2023-25619

  • EPSS 0.07%
  • Published 19.04.2023 08:15:07
  • Last modified 05.02.2025 16:15:35

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when communicating over the Modbus TCP protocol.

9.8

CVE-2020-7475

  • EPSS 0.57%
  • Published 23.03.2020 19:15:12
  • Last modified 21.11.2024 05:37:13

A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), reflective DLL, vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M...

7.5

CVE-2019-6857

  • EPSS 0.37%
  • Published 06.01.2020 23:15:11
  • Last modified 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the contro...

7.5

CVE-2019-6856

  • EPSS 0.37%
  • Published 06.01.2020 23:15:11
  • Last modified 21.11.2024 04:47:17

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing ...

7.5

CVE-2018-7794

  • EPSS 0.39%
  • Published 06.01.2020 23:15:10
  • Last modified 21.11.2024 04:12:44

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading ...

6.5

CVE-2019-6846

  • EPSS 0.22%
  • Published 29.10.2019 19:15:22
  • Last modified 21.11.2024 04:47:16

A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause information disclosure when using the FTP protocol.

4.9

CVE-2019-6844

  • EPSS 0.38%
  • Published 29.10.2019 19:15:22
  • Last modified 21.11.2024 04:47:15

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service atack on the PLC when upgrading the controller...

7.5

CVE-2019-6845

  • EPSS 0.21%
  • Published 29.10.2019 19:15:22
  • Last modified 21.11.2024 04:47:16

A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580, Modicon M340, Modicon Premium , Modicon Quantum (all firmware versions), which could cause the disclosure of information when transferring applications t...