[SECURITY] Fedora 30 Update: libmodbus-3.0.8-1.fc30

libmodbus is a C library designed to provide a fast and robust implementati on of the Modbus protocol. It runs on Linux, Mac OS X, FreeBSD, QNX and Windows. This package contains the libmodbus shared library...

The vulnerability of the Modbus microprogramming software protocol allows a perpetrator to execute commands for starting, stopping, downloading, and uploading data on the device.

The vulnerability of the Modbus microprogramming software for programmable logic controllers lies in the transmission of confidential information in an unencrypted form. Exploiting this vulnerability allows a malicious actor to execute commands such as start, stop, download, and upload operations...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to the disclosure of information, allows a intruder to gain access to confidential data.

The vulnerability of the microprogrammed programmable logic controller Modicon is related to the disclosure of information. Exploiting this vulnerability can allow an intruder, operating remotely, to gain access to confidential SNMP protocol information by reading memory blocks of the controller...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to unprocessed exceptions, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed programmable logic controller Modicon is related to unprocessed exceptions. Exploiting this vulnerability could allow a malicious actor to cause malfunctions during the recording of certain application variables using the Modbus protocol in the controller...

The vulnerability of the microprogrammed logic controller Modicon Quantum, related to errors in code generation, allows a intruder to unauthorizedly modify the built-in software and cause malfunctions during maintenance.

The vulnerability of the microprogrammed programmable logic controller Modicon Quantum is related to errors in code generation. Exploiting this vulnerability allows an intruder to unauthorizedly modify the built-in software and cause malfunctions using the Modbus protocol...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to the disclosure of information, allows a intruder to gain access to confidential data.

The vulnerability of the microprogrammed programmable logic controller Modicon relates to the disclosure of information. Exploiting this vulnerability can allow an intruder, operating remotely, to gain access to confidential SNMP protocol information when reading variables in the controller using...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to access control errors, allows a intruder to execute arbitrary code.

The vulnerability of the microprogrammed programmable logic controller Modicon is related to access control errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by modifying the controller’s configuration using the Modbus protocol...

The vulnerability of the microprogrammed logic controllers from Modicon, related to access control errors, allows a intruder to trigger a service failure or execute arbitrary code.

The vulnerability of the programmable logic controller Modicon’s microprogramming software is related to access control errors. Exploiting this vulnerability could allow an intruder to cause service failures or execute arbitrary code by modifying the controller’s configuration using the Modbus...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to unprocessed exceptions, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed logic controller Modicon is related to unprocessed exceptions. Exploiting this vulnerability could allow a malicious actor to cause malfunctions during maintenance operations when reading invalid blocks of physical memory in the controller using the Modbus...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to the violation of trust boundaries, allows a intruder to gain unauthorized access by performing a “forceful” attack against the Modbus protocol.

The vulnerability of the microprogrammed logic controllers from Modicon relates to the violation of trust boundaries during connection. Exploiting this vulnerability allows an attacker, operating remotely, to gain unauthorized access by performing a “forceful” attack using the Modbus protocol...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to unprocessed exceptions, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed logic controller Modicon is related to unprocessed exceptions. Exploiting this vulnerability could allow a malicious actor to cause malfunctions by sending inappropriate debugging parameters to the controller using the Modbus protocol...

Schneider Electric Altivar ATV61HU75M3S337 Variable Speed Drive

Binary data 764094.prm...

Access Control Error Vulnerability in Multiple Schneider Electric Products (CNVD-2019-34610)

The Schneider Electric Modicon M580 is a programmable automation controller.The Schneider Electric Modicon Premium is a large programmable logic controller PLC for discrete or process applications.The Schneider Electric Modicon Quantum is a large programmable logic controller PLC for process...

CVE-2018-7853

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when reading invalid physical memory blocks in the controller over Modbus...

CVE-2018-7855

A CWE-248 Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a Denial of Service when sending invalid breakpoint parameters to the controller over Modbus...

CVE-2019-6816

In Modicon Quantum all firmware versions, a CWE-94: Code Injection vulnerability could cause an unauthorized firmware modification with possible Denial of Service when using Modbus protocol...

CVE-2018-7846

A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause unauthorized access by conducting a brute force attack on Modbus protocol to the controller...

Design/Logic Flaw

A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause unauthorized access by conducting a brute force attack on Modbus protocol to the controller...

Code injection

In Modicon Quantum all firmware versions, a CWE-94: Code Injection vulnerability could cause an unauthorized firmware modification with possible Denial of Service when using Modbus protocol...

CVE-2018-7846

CVE-2018-7846 affects Schneider Electric Modicon M580, M340, Quantum and Premium PLCs. The issue is a CWE-501 Trust Boundary Violation in the UMAS/Reservation mechanism: an unauthenticated brute-force attempt to the Modbus-based reservation session (one-byte session token) can allow unauthorized ...