CVE-2018-7851

🗓️ 22 May 2019 19:56:24Reported by schneiderType

Buffer errors vulnerability in Modicon devices with firmware prior to V2.50 can cause denial of service

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2018-7851	22 May 201920:48	–	circl
Cvelist	CVE-2018-7851	22 May 201919:56	–	cvelist
NVD	CVE-2018-7851	22 May 201920:29	–	nvd
Tenable Nessus	Schneider-electric M580 Improper Restriction of Operations within the Bounds of a Memory Buffer	8 Nov 201900:00	–	nessus
Tenable Nessus	Schneider Electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2018-7851)	7 Feb 202200:00	–	nessus
Prion	Buffer overflow	22 May 201920:29	–	prion
Positive Technologies	PT-2019-2342 · Schneider Electric · Modicon M580 +4	14 May 201900:00	–	ptsecurity
RedhatCVE	CVE-2018-7851	22 May 202504:00	–	redhatcve

NVD

Node

schneider-electric m580_firmwareRange<2.50

AND

schneider-electric bmeh582040Match-

schneider-electric bmeh582040cMatch-

schneider-electric bmeh584040Match-

schneider-electric bmeh584040cMatch-

schneider-electric bmeh586040Match-

schneider-electric bmeh586040cMatch-

schneider-electric modicon_m580_bmep581020Match-

schneider-electric modicon_m580_bmep581020hMatch-

schneider-electric modicon_m580_bmep582020Match-

schneider-electric modicon_m580_bmep582020hMatch-

schneider-electric modicon_m580_bmep582040Match-

schneider-electric modicon_m580_bmep582040hMatch-

schneider-electric modicon_m580_bmep582040sMatch-

schneider-electric modicon_m580_bmep583020Match-

schneider-electric modicon_m580_bmep583040Match-

schneider-electric modicon_m580_bmep584020Match-

schneider-electric modicon_m580_bmep584040Match-

schneider-electric modicon_m580_bmep584040sMatch-

schneider-electric modicon_m580_bmep585040Match-

schneider-electric modicon_m580_bmep585040cMatch-

schneider-electric modicon_m580_bmep586040Match-

schneider-electric modicon_m580_bmep586040cMatch-

Node

schneider-electric m340_firmwareRange<3.01

AND

schneider-electric modicon_m340_bmxp341000Match-

schneider-electric modicon_m340_bmxp341000hMatch-

schneider-electric modicon_m340_bmxp342000Match-

schneider-electric modicon_m340_bmxp3420102Match-

schneider-electric modicon_m340_bmxp3420102clMatch-

schneider-electric modicon_m340_bmxp342020Match-

schneider-electric modicon_m340_bmxp342020hMatch-

schneider-electric modicon_m340_bmxp3420302Match-

schneider-electric modicon_m340_bmxp3420302clMatch-

schneider-electric modicon_m340_bmxp3420302hMatch-

Node

schneider-electric bmx/e_cra_firmwareRange<2.40

AND

schneider-electric bmxcra31200Match-

schneider-electric bmxcra31210cMatch-

Node

schneider-electric modicon_premium_firmware

AND

schneider-electric modicon_premiumMatch-

Node

schneider-electric 140cra312xxx_firmware

AND

schneider-electric 140cra312xxxMatch-

[
  {
    "product": "Modicon M580 with firmware prior to V2.50 Modicon M340 with firmware prior to V3.01 BMxCRA312xx with firmware prior to V2.40 All firmware versions of Modicon Premium and 140CRA312xxx",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Modicon M580 with firmware prior to V2.50 Modicon M340 with firmware prior to V3.01 BMxCRA312xx with firmware prior to V2.40 All firmware versions of Modicon Premium and 140CRA312xxx"
      }
    ]
  }
]

Source	Link
schneider-electric	www.schneider-electric.com/en/download/document/SEVD-2019-134-10/

21 Nov 2024 04:12Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.16.5

CVSS 26.8

EPSS0.00334

CWE-119