CVE-2021-22764

A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 see security notification for version infromation that could cause loss of connectivity to the device via Modbus TCP protocol when an attacker sends a specially...

CVE-2020-7543

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Legacy Controllers Modicon Quantum & Modicon Premium see security notifications for affected versions, that could cause denial of service when a specially crafted Read Physical Memo...

CVE-2020-7542

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Legacy Controllers Modicon Quantum & Modicon Premium see security notifications for affected versions, that could cause denial of service when a specially crafted Read Physical Memo...

CVE-2020-7537

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Legacy Controllers Modicon Quantum & Modicon Premium see security notifications for affected versions, that could cause denial of service when a specially crafted Read Physical Memo...

PT-2020-19620 · Schneider Electric · Modicon M580 +3

Name of the Vulnerable Software and Affected Versions: Modicon M580 affected versions not specified Modicon M340 affected versions not specified Legacy Controllers Modicon Quantum affected versions not specified Legacy Controllers Modicon Premium affected versions not specified Description: A...

PT-2020-6372 · Schneider Electric · Modicon M580 +3

Name of the Vulnerable Software and Affected Versions: Modicon M580 affected versions not specified Modicon M340 affected versions not specified Legacy Controllers Modicon Quantum affected versions not specified Modicon Premium affected versions not specified Description: A vulnerability exists...

The vulnerability of the Modbus terminal protocol implementation in the EKRA 200 microprocessor series allows a hacker to execute any Modbus command and alter the controller’s configuration, including modifying the control program and executing arbitrary code.

The vulnerability of the Modbus microprogramming software for ECUs exists due to the lack of authentication for any Modbus protocol commands. Exploiting this vulnerability allows a malicious actor to execute any Modbus command remotely and alter the controller’s configuration, including modifying...

Schneider Electric EcoStruxure Control Expert Security Vulnerability

Schneider Electric EcoStruxure Control Expert formerly known as Unity Pro is a suite of programming software for Schneider Electric logic controller products from Schneider Electric, France. A security vulnerability exists in EcoStruxure Control Expert that stems from a specially crafted request...

Schneider Electric Unity Pro 安全漏洞

Schneider Electric EcoStruxure Control Expert is the universal programming, commissioning and operating software for the Modicon M340, M580, M580S, Premium, Momentum and Quantum series. A command execution vulnerability exists in Schneider Electric EcoStruxure Control Expert. The vulnerability...

Modbus Banner Grabbing

This module grabs the banner of any device running the Modbus protocol by sending a request with Modbus Function Code 43 Read Device Identification. Modbus is a data communications protocol originally published by Modicon now Schneider Electric in 1979 for use with its programmable logic...

CVE-2019-6856

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium see security notification for specific versions which could cause a Denial of Service when writing specific physical memory blocks using Modbus TCP...

CVE-2019-6856

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium see security notification for specific versions which could cause a Denial of Service when writing specific physical memory blocks using Modbus TCP...

PT-2020-8981

Name of the Vulnerable Software and Affected Versions Modicon M580 affected versions not specified Modicon M340 affected versions not specified Modicon Quantum affected versions not specified Modicon Premium affected versions not specified Description A vulnerability exists that could cause a...

The vulnerability of Modicon microprogrammed controllers lies in the transmission of confidential information in open text using the Modbus TCP protocol during controller programming, allowing attackers to disclose the protected information.

The vulnerability of Modicon controllers’ microprogramming software lies in the transmission of confidential information as open text using the Modbus TCP protocol during controller programming. Exploiting this vulnerability can allow a remote attacker to disclose the protected information...

The vulnerability of the Modbus protocol implementation in the “Communication Server” software of the EKRASMS-SP program suite for microprocessor-based EKRA 200 terminals allows a perpetrator to execute any command they desire.

The vulnerability of the Modbus protocol implementation in the “Communication Server” software of the EKRASMS-SP suite for microprocessor-based EKRA 200 terminals exists due to insufficient filtering of symbols in file paths. Exploiting this vulnerability allows a malicious actor to execute...

Carel pCOWeb HVAC Modbus Interface Authentication Bypass

Advisory: Unauthenticated Access to Modbus Interface in Carel pCOWeb HVAC As part of it's features, the Carel pCOWeb card exposes a Modbus interface to the network. By design, Modbus does not provide authentication, allowing to control the affected system. Details ======= Product: HVAC units usin...

Schneider 140NOE77101 Ethernet Module MODBUS Protocol Denial of Service Vulnerability

The 140NOE77101 is an Ethernet communication module for the Quantum series of PLCs from Schneider. A denial of service vulnerability exists in the MODBUS protocol of the Schneider 140NOE77101 Ethernet Module, which can be exploited by an attacker to be a denial of service to the server...

PT-2019-18367

Name of the Vulnerable Software and Affected Versions Modicon M580 versions prior to V2.90 Modicon M340 versions prior to V3.10 Description A CWE-248: Uncaught Exception issue exists, which could cause a possible denial of service when writing to specific memory addresses in the controller over...

Fedora Update for libmodbus FEDORA-2019-355f6e10c1

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 29 Update: libmodbus-3.0.8-1.fc29

libmodbus is a C library designed to provide a fast and robust implementati on of the Modbus protocol. It runs on Linux, Mac OS X, FreeBSD, QNX and Windows. This package contains the libmodbus shared library...