2 matches found
Schneider Electric Modicon Improper Authentication (CVE-2018-7760)
An authorization bypass vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. Requests to CGI functions allow malicious users to bypass authorization. This plugin only works with Tenable.ot. Please visit...
CVE-2018-7760
Affected products: Schneider Electric Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. Vulnerability: authorization bypass in CGI functions of the embedded web server, allowing remote attackers to bypass authentication. Root cause: authentication mechanism weaknesses in CGI handlin...