Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500125.NASL
HistoryNov 08, 2019 - 12:00 a.m.

Schneider-electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer

2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
6

0.004 Low

EPSS

Percentile

74.3%

JSON

A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause unauthorized access by conducting a brute force attack on Modbus protocol to the controller.

File data ot_500125.nasl
VendorProductVersionCPE
schneider-electricmodicon_m580_firmware*cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_m580-cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*
schneider-electricmodicon_m340_firmware*cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_m340-cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*
schneider-electricmodicon_quantum_firmware*cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_quantum-cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:*
schneider-electricmodicon_premium_firmware*cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_premium-cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:*

Related

nessus 1
cve 1
prion 1
cvelist 1
nvd 1
talos 1
talosblog 1
nessus
nessus
Schneider Electric Modicon Exposure of Resource to Wrong Sphere (CVE-2018-7846)
2022-02-07 00:00:00
cve
cve
CVE-2018-7846
2019-05-22 20:29:01
prion
prion
Design/Logic Flaw
2019-05-22 20:29:00
cvelist
cvelist
CVE-2018-7846
2019-05-22 19:57:42
nvd
nvd
CVE-2018-7846
2019-05-22 20:29:01
talos
talos
Schneider Electric Modicon M580 UMAS release reservation denial-of-service vulnerability
2019-06-10 00:00:00
talosblog
talosblog
Vulnerability Spotlight: Multiple vulnerabilities in Schneider Electric Modicon M580
2019-06-20 06:08:34

0.004 Low

EPSS

Percentile

74.3%

JSON
Related for OT_500125.NASL
nessus1cve1prion1cvelist1nvd1talos1talosblog1