Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500170.NASLHistoryNov 08, 2019 - 12:00 a.m.
Schneider-electric Modicom Weak Password Recovery Mechanism for Forgotten Password
2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
0.008 Low
EPSS
Percentile
81.9%
An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an unauthenticated remote user to access the password delete function of the web server.
File data ot_500170.nasl| Vendor | Product | Version | CPE |
|---|---|---|---|
| schneider-electric | modicom_m340_firmware | * | cpe:2.3:o:schneider-electric:modicom_m340_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicom_m340 | - | cpe:2.3:h:schneider-electric:modicom_m340:-:*:*:*:*:*:*:* |
| schneider-electric | modicom_premium_firmware | * | cpe:2.3:o:schneider-electric:modicom_premium_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicom_premium | * | cpe:2.3:h:schneider-electric:modicom_premium:*:*:*:*:*:*:*:* |
| schneider-electric | modicom_quantum_firmware | * | cpe:2.3:o:schneider-electric:modicom_quantum_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicom_quantum | * | cpe:2.3:h:schneider-electric:modicom_quantum:*:*:*:*:*:*:*:* |
| schneider-electric | modicom_bmxnor0200h_firmware | * | cpe:2.3:o:schneider-electric:modicom_bmxnor0200h_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicom_bmxnor0200h | - | cpe:2.3:h:schneider-electric:modicom_bmxnor0200h:-:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2018-7809
2018-11-30 19:29:00
cvelist
cvelist
CVE-2018-7809
2018-11-30 19:00:00
nessus
nessus
prion
prion
Default credentials
2018-11-30 19:29:00
nvd
nvd
CVE-2018-7809
2018-11-30 19:29:00
checkpoint_advisories
checkpoint_advisories