Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500301.NASLHistoryNov 08, 2019 - 12:00 a.m.
Schneider-electric Modicon Exposure of Sensitive Information to an Unauthorized Actor
2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
0.003 Low
EPSS
Percentile
66.2%
A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of SNMP information when reading files from the controller over Modbus
File data ot_500301.nasl| Vendor | Product | Version | CPE |
|---|---|---|---|
| schneider-electric | modicon_m580_firmware | * | cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_m580 | - | cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:* |
| schneider-electric | modicon_m340_firmware | * | cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_m340 | - | cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:* |
| schneider-electric | modicon_quantum_firmware | * | cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_quantum | - | cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:* |
| schneider-electric | modicon_premium_firmware | * | cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:* |
| schneider-electric | modicon_premium | - | cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:* |
Related
nessus
nessus
nvd
nvd
CVE-2018-7848
2019-05-22 20:29:01
cvelist
cvelist
CVE-2018-7848
2019-05-22 19:59:26
cve
cve
CVE-2018-7848
2019-05-22 20:29:01
talos
talos
prion
prion
Information disclosure
2019-05-22 20:29:00
talosblog
talosblog