Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500224.NASLHistoryNov 08, 2019 - 12:00 a.m.
Schneider-electric Modicon Improper Input Validation
2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
0.001 Low
EPSS
Percentile
48.8%
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause a possible Denial of Service due to improper data integrity check when sending files the controller over Modbus.
File data ot_500224.nasl| Vendor | Product | Version | CPE |
|---|---|---|---|
| schneider-electric | modicon_m580_firmware | * | cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_m580 | - | cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:* |
| schneider-electric | modicon_m340_firmware | * | cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_m340 | - | cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:* |
| schneider-electric | modicon_quantum_firmware | * | cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_quantum | - | cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:* |
| schneider-electric | modicon_premium_firmware | * | cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_premium | - | cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2018-7849
2019-05-22 19:58:16
prion
prion
Design/Logic Flaw
2019-05-22 20:29:00
nessus
nessus
talos
talos
cve
cve
CVE-2018-7849
2019-05-22 20:29:01
nvd
nvd
CVE-2018-7849
2019-05-22 20:29:01
talosblog
talosblog