Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.21 views

Schneider Electric Quantum Ethernet Module Permissions, Privileges, and Access Controls (CVE-2011-4861)

The modbus125handler function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device aka the Quantum 140NOE771 module allows remote attackers to install arbitrary firmware updates via a MODBUS 125 function code to TCP port 502. This plugin only works with Tenable.ot. Please visit...

10CVSS6AI score0.03213EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.22 views

Schneider Electric Quantum Ethernet Module Improper Authentication (CVE-2011-4860)

The ComputePassword function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device aka the Quantum 140NOE771 module generates the password for the fwupgrade account by performing a calculation on the MAC address, which makes it easier for remote attackers to obtain access via a ...

10CVSS5.8AI score0.02832EPSS
Exploits0References2
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.27 views

Schneider Electric Quantum NOE 771 xx 弱口令

No description provided by source...

7.1AI score
Exploits0
NVD
NVD
added 2011/12/17 11:55 a.m.23 views

CVE-2011-4860

The ComputePassword function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device aka the Quantum 140NOE771 module generates the password for the fwupgrade account by performing a calculation on the MAC address, which makes it easier for remote attackers to obtain access via a ...

10CVSS6.6AI score0.02832EPSS
Exploits0References1
Prion
Prion
added 2011/12/17 11:55 a.m.13 views

Design/Logic Flaw

The ComputePassword function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device aka the Quantum 140NOE771 module generates the password for the fwupgrade account by performing a calculation on the MAC address, which makes it easier for remote attackers to obtain access via a ...

10CVSS7.2AI score0.02832EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2011/12/17 11:0 a.m.27 views

CVE-2011-4861

The modbus125handler function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device aka the Quantum 140NOE771 module allows remote attackers to install arbitrary firmware updates via a MODBUS 125 function code to TCP port 502...

6.8AI score0.03213EPSS
Exploits1References1
Cvelist
Cvelist
added 2011/12/17 11:0 a.m.24 views

CVE-2011-4860

The ComputePassword function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device aka the Quantum 140NOE771 module generates the password for the fwupgrade account by performing a calculation on the MAC address, which makes it easier for remote attackers to obtain access via a ...

6.6AI score0.02832EPSS
Exploits0References1
CVE
CVE
added 2011/12/17 11:0 a.m.78 views

CVE-2011-4860

The vulnerability CVE-2011-4860 affects the Schneider Electric Quantum Ethernet Module NOE 771 (aka Quantum 140NOE771*) where the ComputePassword function derives the fwupgrade password from the MAC address. This allows remote attackers to gain access via (1) ARP requests or (2) Neighbor Solicita...

10CVSS6.8AI score0.02832EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2011/12/17 11:0 a.m.69 views

CVE-2011-4861

The CVE-2011-4861 entry concerns Schneider Electric Quantum Ethernet Module (NOE 771 / Quantum 140NOE771*) that allows remote firmware updates via the MODBUS 125 function code sent to TCP port 502 through the modbus_125_handler. This is a software/firmware update mechanism vulnerability in the de...

10CVSS7.1AI score0.03213EPSS
Exploits1References1Affected Software3
Rows per page
Query Builder