Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
schneider-electric modicon m241 firmware vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-6030
A Predictable Value Range from Previous Values issue exists in Schneider Electric Modicon PLCs Modicon M221, firmware versions prior to Version 1.5.0.0, Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The a...
Schneider-electric Modicon M241 Firmware
Schneider-electric Modicon M251 Firmware
Schneider-electric Modicon M221 Firmware
9.1
CVSSv3
CVE-2017-6026
A Use of Insufficiently Random Values issue exists in Schneider Electric Modicon PLCs Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The session numbers generated by the web application are lacking randomi...
Schneider-electric Modicon M251 Firmware
Schneider-electric Modicon M241 Firmware
9.8
CVSSv3
CVE-2017-6028
An Insufficiently Protected Credentials issue exists in Schneider Electric Modicon PLCs Modicon M241, all firmware versions, and Modicon M251, all firmware versions. Log-in credentials are sent over the network with Base64 encoding leaving them susceptible to sniffing. Sniffed cr...
Schneider-electric Modicon M241 Firmware
Schneider-electric Modicon M251 Firmware
7.5
CVSSv3
CVE-2021-22699
Improper Input Validation vulnerability exists in Modicon M241/M251 logic controllers firmware prior to V5.1.9.1 that could cause denial of service when specific crafted requests are sent to the controller over HTTP.
Schneider-electric Modicon M241 Firmware
Schneider-electric Modicon M251 Firmware
7.5
CVSSv3
CVE-2020-7488
A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak sensitive information transmitted between the software and the Modicon M218, M241, M251, and M258 controllers.
Schneider-electric Somachine
Schneider-electric Somachine Motion
Schneider-electric Ecostruxure Machine Expert
Schneider-electric Modicon M218 Firmware
Schneider-electric Modicon M241 Firmware
Schneider-electric Modicon M251 Firmware
Schneider-electric Modicon M258 Firmware
9.8
CVSSv3
CVE-2020-7487
A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists which could allow the malicious user to execute malicious code on the Modicon M218, M241, M251, and M258 controllers.
Schneider-electric Somachine
Schneider-electric Somachine Motion
Schneider-electric Ecostruxure Machine Expert
Schneider-electric Modicon M218 Firmware
Schneider-electric Modicon M241 Firmware
Schneider-electric Modicon M251 Firmware
Schneider-electric Modicon M258 Firmware
8.2
CVSSv3
CVE-2019-6820
A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a modification of device IP configuration (IP address, network mask and gateway IP address) when a specific Ethernet frame is received in all versions of: Modicon M100, Modicon M200, Mo...
Schneider-electric Modicon M100 Firmware
Schneider-electric Modicon M200 Firmware
Schneider-electric Modicon M221 Firmware
Schneider-electric Atv Imc Drive Controller Firmware
Schneider-electric Modicon M241 Firmware
Schneider-electric Modicon M251 Firmware
Schneider-electric Modicon M258 Firmware
Schneider-electric Modicon Lmc058 Firmware
Schneider-electric Modicon Lmc078 Firmware
Schneider-electric Pacdrive Eco Firmware
Schneider-electric Pacdrive Pro Firmware
Schneider-electric Pacdrive Pro2 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started