Modicon M221 Firmware Security Vulnerabilities and Issues — Modicon M221 Firmware CVE List

cve

CVE-2018-7789

An Improper Check for Unusual or Exceptional Conditions vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to remotely reboot Modicon M221 using crafted programing protocol frames.

7.5CVSS

7.3AI Score

0.003EPSS

2018-08-29 08:29 PM

47

2

cve

CVE-2018-7790

An Information Management Error vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to replay authentication sequences. If an attacker exploits this vulnerability and connects to a M...

9.8CVSS

9.3AI Score

0.002EPSS

2018-08-29 09:29 PM

53

2

cve

CVE-2018-7791

A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to overwrite the original password with their password. If an attacker exploits this...

9.8CVSS

9.3AI Score

0.003EPSS

2018-08-29 09:29 PM

48

cve

CVE-2018-7792

A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to decode the password using rainbow table.

7.5CVSS

7.4AI Score

0.001EPSS

2018-08-29 09:29 PM

52

Modicon M221 Firmware Security Vulnerabilities - 2018