Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Schneider-electricModicon Premium Firmware

16 matches found

CVE
CVEadded 2019/09/17 8:15 p.m.107 views

CVE-2019-6828

A CWE-248: Uncaught Exception vulnerability exists Modicon M580 (firmware version prior to V2.90), Modicon M340 (firmware version prior to V3.10), Modicon Premium (all versions), and Modicon Quantum (all versions), which could cause a possible denial of service when reading specific coils and regis...

7.8CVSS7.3AI score0.00367EPSS
CVE
CVEadded 2019/09/17 8:15 p.m.98 views

CVE-2019-6809

A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware versions prior to V2.90), Modicon M340 (firmware versions prior to V3.10), Modicon Premium (all versions), Modicon Quantum (all versions), which could cause a possible denial of service when reading invalid data from the c...

7.8CVSS7.2AI score0.00552EPSS
CVE
CVEadded 2019/05/22 8:29 p.m.81 views

CVE-2018-7845

A CWE-125: Out-of-bounds Read vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of unexpected data from the controller when reading specific memory blocks in the controller over Modbus.

7.5CVSS7.3AI score0.04366EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.72 views

CVE-2018-7844

A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of SNMP information when reading memory blocks from the controller over Modbus.

7.5CVSS7.2AI score0.13834EPSS
CVE
CVEadded 2019/05/22 8:29 p.m.69 views

CVE-2019-6819

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.8...

7.5CVSS7.4AI score0.00468EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.61 views

CVE-2019-6807

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a possible denial of service when writing sensitive application variables to the controller over Modbus.

7.5CVSS7.2AI score0.00141EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.58 views

CVE-2018-7854

A CWE-248 Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a denial of Service when sending invalid debug parameters to the controller over Modbus.

7.5CVSS7.2AI score0.01912EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.58 views

CVE-2018-7855

A CWE-248 Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a Denial of Service when sending invalid breakpoint parameters to the controller over Modbus

7.5CVSS7.3AI score0.00591EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.58 views

CVE-2019-6806

A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of SNMP information when reading variables in the controller using Modbus.

7.5CVSS7.2AI score0.0034EPSS
CVE
CVEadded 2019/05/22 8:29 p.m.57 views

CVE-2018-7843

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when reading memory blocks with an invalid data size or with an invalid data offset in the controller over Modbus.

7.5CVSS7.3AI score0.14763EPSS
CVE
CVEadded 2019/05/22 8:29 p.m.57 views

CVE-2018-7849

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause a possible Denial of Service due to improper data integrity check when sending files the controller over Modbus.

7.5CVSS7.3AI score0.14763EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.56 views

CVE-2018-7853

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when reading invalid physical memory blocks in the controller over Modbus

7.5CVSS7.2AI score0.00494EPSS
CVE
CVEadded 2019/05/22 8:29 p.m.55 views

CVE-2018-7848

A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of SNMP information when reading files from the controller over Modbus

7.5CVSS7.2AI score0.1323EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.53 views

CVE-2018-7856

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a possible denial of Service when writing invalid memory blocks to the controller over Modbus.

7.5CVSS7.2AI score0.00494EPSS
CVE
CVEadded 2019/05/22 9:29 p.m.53 views

CVE-2018-7857

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a possible Denial of Service when writing out of bounds variables to the controller over Modbus.

7.5CVSS7.3AI score0.00494EPSS
CVE
CVEadded 2019/05/22 8:29 p.m.52 views

CVE-2018-7852

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when an invalid private command parameter is sent to the controller over Modbus.

7.5CVSS7.4AI score0.14763EPSS