4 matches found
Schneider Electric Modicon Open Redirect (CVE-2018-7804)
A URL Redirection to Untrusted Site vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a user clicking on a specially crafted link can be redirected to a URL of the attacker's choosing. This plugin only works with Tenable.ot. Please...
CVE-2018-7804
A URL Redirection to Untrusted Site vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a user clicking on a specially crafted link can be redirected to a URL of the attacker's choosing...
CVE-2018-7804
CVE-2018-7804 affects Schneider Electric Modicon devices: M340, Premium, Quantum PLCs and BMXNOR0200 with embedded web servers. The vulnerability is a URL redirection to an untrusted site triggered when a user clicks a specially crafted link. The issue is an open redirect in the web interface, en...
Schneider Electric BMX P34 CPU B Open Redirect
Exploit Title: Schneider Electric BMX P34 CPU B - Unvalidated Redirects and Forwards Date: 2018-07-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.schneider-electric.com/ Hardware Link : https://www.schneider-electric.com/en/product/BMXP342020/ Software : Schneider Electric...