Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500328.NASL
HistoryNov 08, 2019 - 12:00 a.m.

Schneider-electric Modicon Improper Access Control

2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15

0.014 Low

EPSS

Percentile

86.4%

JSON

A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service or potential code execution by overwriting configuration settings of the controller over Modbus.

File data ot_500328.nasl
VendorProductVersionCPE
schneider-electricmodicon_m580_firmware*cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_m580-cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*
schneider-electricmodicon_m340_firmware*cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_m340-cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*
schneider-electricmodicon_quantum_firmware*cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_quantum-cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:*
schneider-electricmodicon_premium_firmware*cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_premium-cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:*

Related

prion 1
talos 1
nessus 1
cve 1
cvelist 1
nvd 1
talosblog 1
prion
prion
Improper access control
2019-05-22 20:29:00
talos
talos
Schneider Electric Modicon M580 UMAS Strategy File Write Vulnerability
2019-06-10 00:00:00
nessus
nessus
Schneider Electric Modicon Improper Authentication (CVE-2018-7847)
2022-02-07 00:00:00
cve
cve
CVE-2018-7847
2019-05-22 20:29:01
cvelist
cvelist
CVE-2018-7847
2019-05-22 20:00:04
nvd
nvd
CVE-2018-7847
2019-05-22 20:29:01
talosblog
talosblog
Vulnerability Spotlight: Multiple vulnerabilities in Schneider Electric Modicon M580
2019-06-20 06:08:34

0.014 Low

EPSS

Percentile

86.4%

JSON
Related for OT_500328.NASL
prion1talos1nessus1cve1cvelist1nvd1talosblog1