69 matches found
Out-of-bounds
A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules see notification for details which could cause corruption of data, a crash, or code execution when uploading a specially crafted...
CVE-2020-7562
A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules see notification for details which could cause a segmentation fault or a buffer overflow when uploading a specially crafted file ...
CVE-2020-7562
A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules see notification for details which could cause a segmentation fault or a buffer overflow when uploading a specially crafted file ...
CVE-2020-7564
A CWE-120: Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules see notification for details which could cause write access and the execution o...
CVE-2020-7563
A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules see notification for details which could cause corruption of data, a crash, or code execution when uploading a specially crafted...
Multiple Schneider Electric Products Buffer Error Vulnerabilities
Schneider Electric Modicon Quantum and others are products of Schneider Electric, France.Schneider Electric Modicon Quantum is a large programmable logic controller PLC for process applications, high availability and safety solutions.Schneider Electric Modicon M340 is a mid-range PLC programmable...
Multiple Schneider Electric Products Buffer Error Vulnerabilities
Schneider Electric Modicon Quantum and others are products of Schneider Electric, France.Schneider Electric Modicon Quantum is a large programmable logic controller PLC for process applications, high availability and safety solutions.Schneider Electric Modicon M340 is a mid-range PLC programmable...
PT-2020-6658
Name of the Vulnerable Software and Affected Versions Modicon M340 versions affected versions not specified Modicon Quantum versions affected versions not specified Modicon Premium Legacy versions affected versions not specified Communication Modules versions affected versions not specified...
Schneider Electric Modicon Quantum and Schneider Electric Modicon M340 Buffer Error Vulnerability
The Schneider Electric Modicon Quantum and Schneider Electric Modicon M340 are both products of Schneider Electric, France.The Schneider Electric Modicon Quantum is a large programmable logic controller PLC for The Schneider Electric Modicon Quantum is a large programmable logic controller PLC fo...
PT-2020-6346 · Schneider Electric · Communication Modules +3
Name of the Vulnerable Software and Affected Versions: Modicon M340 versions affected versions not specified Modicon Quantum versions affected versions not specified Modicon Premium Legacy versions affected versions not specified Communication Modules versions affected versions not specified...
CVE-2019-19279
CVE-2019-19279 affects Siemens SIPROTEC 4 and SIPROTEC Compact relays with EN100 Ethernet modules (all versions). The issue is caused by sending specially crafted packets to UDP port 50000, which can trigger a network-denial-of-service on the affected device. Recovery requires a manual reboot. At...
Rockwellautomation Controllogix Unspecified Vulnerability
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...
Rockwellautomation Ethernet\/ip Improper Restriction of Operations within the Bounds of a Memory Buffer
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...
CVE-2019-10930
Siem ens CVE-2019-10930 affects SIPROTEC 5 (CPU CP300/CP100 and CP200 variants) and related DIGSI 5 modules. A remote attacker could exploit via specially crafted packets to Port 443/TCP to upload, download or delete files in parts of the file system. Affected devices include a range of SIPROTEC ...
Rockwell Automation/Allen-Bradley Ethernet/IP Products Improper Input Validation
Binary data 720026.prm...
Rockwell Automation/Allen-Bradley Ethernet/IP Products Authentication Bypass
Binary data 720028.prm...
CVE-2018-16563
A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module All versions V4.35, Firmware variant MODBUS TCP for EN100 Ethernet module All versions, Firmware variant DNP3 TCP for EN100 Ethernet module All versions, Firmware variant IEC104 for EN100 Ethernet module A...
Hardcoded credentials
Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules...
CVE-2018-7241
Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules...
CVE-2018-7241
CVE-2018-7241 affects Schneider Electric Modicon Premium, Quantum, M340, and BMXNOR0200 controllers. The issue is hard-coded accounts present in all versions of the devices’ communication modules, enabling unauthorized access via the FTP/communication interfaces. The underlying risk is high (desc...