Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

schneider-electric 140noe77111 firmware vulnerabilities and exploits

(subscribe to this query)
10
CVSSv2

CVE-2011-4861

The modbus_125_handler function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device (aka the Quantum 140NOE771* module) allows remote malicious users to install arbitrary firmware updates via a MODBUS 125 function code to TCP port 502.
Schneider-electric Quantum Ethernet Module 140noe77101Schneider-electric Quantum Ethernet Module 140noe77100Schneider-electric Quantum Ethernet Module 140noe77111
7.5
CVSSv2

CVE-2020-7540

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause unauthenticat...
Schneider-electric Modicon M340 Bmxp341000 FirmwareSchneider-electric Modicon M340 Bmxp342000 FirmwareSchneider-electric Modicon M340 Bmxp3420102 FirmwareSchneider-electric Modicon M340 Bmxp3420102cl FirmwareSchneider-electric Modicon M340 Bmxp342020 FirmwareSchneider-electric Modicon M340 Bmxp3420302 FirmwareSchneider-electric Modicon M340 Bmxp3420302cl FirmwareSchneider-electric Bmxnoe0100 FirmwareSchneider-electric Bmxnoe0110 FirmwareSchneider-electric 140noe77101 FirmwareSchneider-electric 140noe77111 FirmwareSchneider-electric 140cpu65150 FirmwareSchneider-electric 140cpu65160 FirmwareSchneider-electric 140noc78000 FirmwareSchneider-electric 140noc78100 FirmwareSchneider-electric 140noc77101 FirmwareSchneider-electric Tsxp574634 FirmwareSchneider-electric Tsxp575634 FirmwareSchneider-electric Tsxp576634 FirmwareSchneider-electric Tsxety4103 FirmwareSchneider-electric Tsxety5103 FirmwareSchneider-electric Bmxnoc0401 Firmware
7.5
CVSSv2

CVE-2020-7533

A CWE-255: Credentials Management vulnerability exists in Web Server on Modicon M340, Modicon Quantum and ModiconPremium Legacy offers and their Communication Modules (see security notification for version information) which could cause the execution of commands on the webserver ...
Schneider-electric Modicon M340 Bmxp3420302 FirmwareSchneider-electric Modicon M340 Bmxp342000 FirmwareSchneider-electric Modicon M340 Bmxp341000 FirmwareSchneider-electric Modicon M340 Bmxp3420102 FirmwareSchneider-electric Bmxnoe0100 FirmwareSchneider-electric Bmxnoe0110 FirmwareSchneider-electric Bmxnoc0401 FirmwareSchneider-electric Tsxp574634 FirmwareSchneider-electric Tsxp575634 FirmwareSchneider-electric Tsxp576634 FirmwareSchneider-electric Tsxety4103 FirmwareSchneider-electric Tsxety5103 FirmwareSchneider-electric 140noe77111 FirmwareSchneider-electric 140noc78000 FirmwareSchneider-electric 140noc77101 FirmwareSchneider-electric 140cpu65260 Firmware
6.8
CVSSv2

CVE-2020-7534

A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists on the web server used, that could cause a leak of sensitive data or unauthorized actions on the web server during the time the user is logged in. Affected Products: Modicon M340 CPUs: BMXP34 (All Versions), Modico...
Schneider-electric Modicon M340 Bmxp342020 FirmwareSchneider-electric 140cpu65 FirmwareSchneider-electric Tsxp57 FirmwareSchneider-electric Bmxnoc0401 FirmwareSchneider-electric Bmxnoe01 FirmwareSchneider-electric Bmxnor0200h FirmwareSchneider-electric 140noe77111 FirmwareSchneider-electric 140noc78000 FirmwareSchneider-electric Tsxety5103 FirmwareSchneider-electric Tsxety4103 Firmware
6.5
CVSSv2

CVE-2020-7563

A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause corruption of data, a crash, or code execution when uploading ...
Schneider-electric Modicon Tsxety4103 FirmwareSchneider-electric Modicon Tsxety5103 FirmwareSchneider-electric Modicon Tsxp574634 FirmwareSchneider-electric Modicon Tsxp575634 FirmwareSchneider-electric Modicon Tsxp576634 FirmwareSchneider-electric Modicon Quantum 140noe77101 FirmwareSchneider-electric Modicon Quantum 140noe77111 FirmwareSchneider-electric Modicon Quantum 140noc78100 FirmwareSchneider-electric Modicon Quantum 140cpu65150 FirmwareSchneider-electric Modicon Quantum 140cpu65150c FirmwareSchneider-electric Modicon Quantum 140cpu65160c FirmwareSchneider-electric Modicon Quantum 140cpu65160 FirmwareSchneider-electric Modicon M340 Bmx P34-2010 FirmwareSchneider-electric Modicon M340 Bmx P34-2030 FirmwareSchneider-electric Modicon M340 Bmx Noc 0401 FirmwareSchneider-electric Modicon M340 Bmx Noe 0100 FirmwareSchneider-electric Modicon M340 Bmx Noe 0100h FirmwareSchneider-electric Modicon M340 Bmx Noe 0110 FirmwareSchneider-electric Modicon M340 Bmx Noe 0110h FirmwareSchneider-electric Modicon M340 Bmx Nor 0200h Firmware
6.5
CVSSv2

CVE-2020-7564

A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause w...
Schneider-electric Modicon Tsxety4103 FirmwareSchneider-electric Modicon Tsxety5103 FirmwareSchneider-electric Modicon Tsxp574634 FirmwareSchneider-electric Modicon Tsxp575634 FirmwareSchneider-electric Modicon Tsxp576634 FirmwareSchneider-electric Modicon Quantum 140noe77101 FirmwareSchneider-electric Modicon Quantum 140noe77111 FirmwareSchneider-electric Modicon Quantum 140noc78100 FirmwareSchneider-electric Modicon Quantum 140cpu65150 FirmwareSchneider-electric Modicon Quantum 140cpu65150c FirmwareSchneider-electric Modicon Quantum 140cpu65160c FirmwareSchneider-electric Modicon Quantum 140cpu65160 FirmwareSchneider-electric Modicon M340 Bmx P34-2010 FirmwareSchneider-electric Modicon M340 Bmx P34-2030 FirmwareSchneider-electric Modicon M340 Bmx Noc 0401 FirmwareSchneider-electric Modicon M340 Bmx Noe 0100 FirmwareSchneider-electric Modicon M340 Bmx Noe 0100h FirmwareSchneider-electric Modicon M340 Bmx Noe 0110 FirmwareSchneider-electric Modicon M340 Bmx Noe 0110h FirmwareSchneider-electric Modicon M340 Bmx Nor 0200h Firmware
5.8
CVSSv2

CVE-2020-7562

A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause a segmentation fault or a buffer overflow when uploading a spec...
Schneider-electric Modicon Tsxety4103 FirmwareSchneider-electric Modicon Tsxety5103 FirmwareSchneider-electric Modicon Tsxp574634 FirmwareSchneider-electric Modicon Tsxp575634 FirmwareSchneider-electric Modicon Tsxp576634 FirmwareSchneider-electric Modicon Quantum 140noe77101 FirmwareSchneider-electric Modicon Quantum 140noe77111 FirmwareSchneider-electric Modicon Quantum 140noc78100 FirmwareSchneider-electric Modicon Quantum 140cpu65150 FirmwareSchneider-electric Modicon Quantum 140cpu65150c FirmwareSchneider-electric Modicon Quantum 140cpu65160c FirmwareSchneider-electric Modicon Quantum 140cpu65160 FirmwareSchneider-electric Modicon M340 Bmx P34-2010 FirmwareSchneider-electric Modicon M340 Bmx P34-2030 FirmwareSchneider-electric Modicon M340 Bmx Noc 0401 FirmwareSchneider-electric Modicon M340 Bmx Noe 0100 FirmwareSchneider-electric Modicon M340 Bmx Noe 0100h FirmwareSchneider-electric Modicon M340 Bmx Noe 0110 FirmwareSchneider-electric Modicon M340 Bmx Noe 0110h FirmwareSchneider-electric Modicon M340 Bmx Nor 0200h Firmware
5
CVSSv2

CVE-2020-7535

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notif...
Schneider-electric Modicon M340 Bmxp341000 FirmwareSchneider-electric Modicon M340 Bmxp342000 FirmwareSchneider-electric Modicon M340 Bmxp3420102 FirmwareSchneider-electric Modicon M340 Bmxp3420102cl FirmwareSchneider-electric Modicon M340 Bmxp342020 FirmwareSchneider-electric Modicon M340 Bmxp3420302 FirmwareSchneider-electric Modicon M340 Bmxp3420302cl FirmwareSchneider-electric Bmxnoe0100 FirmwareSchneider-electric Bmxnoe0110 FirmwareSchneider-electric 140noe77101 FirmwareSchneider-electric 140noe77111 FirmwareSchneider-electric 140cpu65150 FirmwareSchneider-electric 140cpu65160 FirmwareSchneider-electric 140noc78000 FirmwareSchneider-electric 140noc78100 FirmwareSchneider-electric 140noc77101 FirmwareSchneider-electric Tsxp574634 FirmwareSchneider-electric Tsxp575634 FirmwareSchneider-electric Tsxp576634 FirmwareSchneider-electric Tsxety4103 FirmwareSchneider-electric Tsxety5103 Firmware
5
CVSSv2

CVE-2020-7539

A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause a deni...
Schneider-electric Modicon M340 Bmxp341000 FirmwareSchneider-electric Modicon M340 Bmxp342000 FirmwareSchneider-electric Modicon M340 Bmxp3420102 FirmwareSchneider-electric Modicon M340 Bmxp3420102cl FirmwareSchneider-electric Modicon M340 Bmxp342020 FirmwareSchneider-electric Modicon M340 Bmxp3420302 FirmwareSchneider-electric Modicon M340 Bmxp3420302cl FirmwareSchneider-electric Bmxnoe0100 FirmwareSchneider-electric Bmxnoe0110 FirmwareSchneider-electric Bmxnoc0401 FirmwareSchneider-electric Tsxp574634 FirmwareSchneider-electric Tsxp575634 FirmwareSchneider-electric Tsxp576634 FirmwareSchneider-electric Tsxety4103 FirmwareSchneider-electric Tsxety5103 FirmwareSchneider-electric 140cpu65150 FirmwareSchneider-electric 140noe77111 FirmwareSchneider-electric 140noc78100 FirmwareSchneider-electric 140noc78000 FirmwareSchneider-electric 140noc77101 Firmware
5
CVSSv2

CVE-2020-7541

A CWE-425: Direct Request ('Forced Browsing') vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause disclosure of...
Schneider-electric Modicon M340 Bmxp341000 FirmwareSchneider-electric Modicon M340 Bmxp342000 FirmwareSchneider-electric Modicon M340 Bmxp3420102 FirmwareSchneider-electric Modicon M340 Bmxp3420102cl FirmwareSchneider-electric Modicon M340 Bmxp342020 FirmwareSchneider-electric Modicon M340 Bmxp3420302 FirmwareSchneider-electric Modicon M340 Bmxp3420302cl FirmwareSchneider-electric Bmxnoe0100 FirmwareSchneider-electric Bmxnoe0110 FirmwareSchneider-electric Bmxnoc0401 FirmwareSchneider-electric Tsxp574634 FirmwareSchneider-electric Tsxp575634 FirmwareSchneider-electric Tsxp576634 FirmwareSchneider-electric Tsxety4103 FirmwareSchneider-electric Tsxety5103 FirmwareSchneider-electric 140cpu65150 FirmwareSchneider-electric 140noe77111 FirmwareSchneider-electric 140noc78100 FirmwareSchneider-electric 140noc78000 FirmwareSchneider-electric 140noc77101 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834CVE-2024-30100CVE-2024-4577physicaldosCVE-2024-30099CVE-2024-27801CVE-2024-32146logic flaw
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook