Lucene search
K

12 matches found

Talos
Talos
added 2019/10/08 12:0 a.m.56 views

Schneider Electric Modicon M580 TFTP server information disclosure vulnerability

Summary An exploitable information disclosure vulnerability exists in the TFTP server functionality of the Schneider Electric Modicon M580 Programmable Automation Controller. A specially crafted TFTP get request can cause a file download, resulting in disclosure of sensitive information. An...

7.5CVSS7.4AI score0.29895EPSS
Exploits0
Talos
Talos
added 2019/10/08 12:0 a.m.182 views

Schneider Electric Modicon M580 UMAS REST API getcominfo denial-of-service vulnerability

Summary An exploitable denial of service vulnerability exists in the UMAS REST API getcominfo functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.80. A specially crafted HTTP request can cause the device to enter a non-recoverable fault...

8.6CVSS8.6AI score0.32974EPSS
Exploits0
Talos
Talos
added 2019/10/08 12:0 a.m.42 views

Schneider Electric Modicon M580 outdated firmware image FTP upgrade denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the FTP firmware update functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.80. An outdated firmware image can cause the device to enter a non-recoverable fault state,...

4.9CVSS5.6AI score0.00959EPSS
Exploits0
Talos
Talos
added 2019/10/08 12:0 a.m.88 views

Schneider Electric Modicon M580 FTP cleartext authentication vulnerability

Summary An exploitable information disclosure vulnerability exists in the FTP functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.80. An attacker can sniff network traffic to exploit this vulnerability. Tested Versions Schneider Electric...

6.5CVSS6.5AI score0.00981EPSS
Exploits0
Talos
Talos
added 2019/08/13 12:0 a.m.48 views

Schneider Electric Modicon M580 UMAS Function Code 0x29 Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the UMAS function code 0x29 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault stat...

7.8CVSS7.8AI score0.01609EPSS
Exploits1
Talos
Talos
added 2019/08/13 12:0 a.m.66 views

Schneider Electric Modicon M580 UMAS Read System Coils and Registers Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the UMAS Read System Coils and Registers functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.80. A specially crafted UMAS command can cause the device to enter a non-recoverab...

7.8CVSS7.8AI score0.01526EPSS
Exploits0
Talos
Talos
added 2019/06/10 12:0 a.m.207 views

Schneider Electric Modicon M580 UMAS strategy transfer denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the UMAS strategy transfer functionality of the Schneider Electric Modicon M580 programmable automation controller firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a recoverable fault state,...

7.5CVSS7.8AI score0.03289EPSS
Exploits1
Talos
Talos
added 2019/06/10 12:0 a.m.137 views

Schneider Electric Modicon M580 UnityPro reliance on untrusted inputs vulnerability

Summary An exploitable reliance on untrusted inputs vulnerability exists in the strategy transfer function of the Schneider Electric Unity Pro L Programming Software. When a specially crafted strategy is programmed to a Modicon M580 Programmable Automation Controller, and UnityProL is used to rea...

5.3CVSS5.6AI score0.01509EPSS
Exploits0
Talos
Talos
added 2019/06/10 12:0 a.m.150 views

Schneider Electric Modicon M580 UMAS set breakpoint denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the UMAS set breakpoint functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault state,...

7.5CVSS7.8AI score0.02626EPSS
Exploits1
Talos
Talos
added 2019/06/10 12:0 a.m.309 views

Schneider Electric Modicon M580 UMAS write system coils and holding registers denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the UMAS write system coils and holding registers functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a...

7.5CVSS7.7AI score0.01582EPSS
Exploits1
Talos
Talos
added 2019/06/10 12:0 a.m.158 views

Schneider Electric Modicon M580 UMAS strategy read information disclosure vulnerability

Summary An exploitable information disclosure vulnerability exists in the UMAS strategy read functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.70. A specially crafted UMAS command can cause the device to return blocks of the programmed...

7.5CVSS7.6AI score0.03413EPSS
Exploits1
Talos
Talos
added 2019/06/10 12:0 a.m.150 views

Schneider Electric Modicon M580 UMAS read memory block information disclosure vulnerability

Summary An exploitable information disclosure vulnerability exists in the UMAS read memory block function of the Schneider Electric Modicon M580 programmable automation controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to return blocks of memory, resulting...

7.5CVSS7.6AI score0.03279EPSS
Exploits1
Rows per page
Query Builder