A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a remote code execution by overwriting configuration settings of the controller over Modbus.
CPE | Name | Operator | Version |
---|---|---|---|
modicon_m340_firmware | lt | 3.10 | |
modicon_m580_firmware | lt | 2.90 | |
modicon_premium_firmware | le | 3.20 | |
modicon_quantum_firmware | le | 3.60 |