Modicon M340 Security Vulnerabilities and Issues — Modicon M340 CVE List

Lucene search

Schneider-electricModicon M340

3 matches found

CVE•added 2013/04/04 11:58 a.m.•72 views

CVE-2013-0663

Cross-site request forgery (CSRF) vulnerability on the Schneider Electric Quantum 140NOE77111, 140NOE77101, and 140NWM10000; M340 BMXNOC0401, BMXNOE0100x, and BMXNOE011xx; and Premium TSXETY4103, TSXETY5103, and TSXWMY100 PLC modules allows remote attackers to hijack the authentication of arbitrary...

6.8CVSS7.5AI score0.00365EPSS

CVE•added 2013/04/04 11:58 a.m.•47 views

CVE-2013-0664

The FactoryCast service on the Schneider Electric Quantum 140NOE77111 and 140NWM10000, M340 BMXNOE0110x, and Premium TSXETY5103 PLC modules allows remote authenticated users to send Modbus messages, and consequently execute arbitrary code, by embedding these messages in SOAP HTTP POST requests.

8.5CVSS7.1AI score0.01098EPSS

CVE•added 2013/04/04 11:58 a.m.•39 views

CVE-2013-2761

The Schneider Electric M340 BMXNOE01xx and BMXP3420xx PLC modules allow remote authenticated users to cause a denial of service (module crash) via crafted FTP traffic, as demonstrated by the FileZilla FTP client.

4CVSS6.5AI score0.00539EPSS