Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
modicon m580 firmware vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2019-6830
A CWE-248: Uncaught Exception vulnerability exists IN Modicon M580 all versions prior to V2.80, which could cause a possible denial of service when sending an appropriately timed HTTP request to the controller.
Schneider-electric Modicon M580 Firmware
8.6
CVSSv3
CVE-2019-6848
A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 CPU (BMEx58*) and Modicon M580 communication module (BMENOC0311, BMENOC0321) (see notification for version info), which could cause a Denial of Service attack on the PLC when sending speci...
Schneider-electric Modicon M580 Firmware -
Schneider-electric Modicon Bmenoc 0311 Firmware -
Schneider-electric Modicon Bmenoc 0321 Firmware -
7.5
CVSSv3
CVE-2019-6849
A CWE-200: Information Exposure vulnerability exists in Modicon M580, Modicon BMENOC 0311, and Modicon BMENOC 0321, which could cause the disclosure of sensitive information when using specific Modbus services provided by the REST API of the controller/communication module.
Schneider-electric Modicon M580 Firmware -
Schneider-electric Modicon Bmenoc 0311 Firmware -
Schneider-electric Modicon Bmenoc 0321 Firmware -
7.5
CVSSv3
CVE-2019-6850
A CWE-200: Information Exposure vulnerability exists in Modicon M580, Modicon BMENOC 0311, and Modicon BMENOC 0321, which could cause the disclosure of sensitive information when reading specific registers with the REST API of the controller/communication module.
Schneider-electric Modicon M580 Firmware -
Schneider-electric Modicon Bmenoc 0311 Firmware -
Schneider-electric Modicon Bmenoc 0321 Firmware -
9.8
CVSSv3
CVE-2020-7475
A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), reflective DLL, vulnerability exists in EcoStruxure Control Expert (all versions before 14.1 Hot Fix), Unity Pro (all versions), Modicon M340 (all versions prio...
Schneider-electric Unity Pro
Schneider-electric Ecostruxure Control Expert
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon M580 Firmware
7.5
CVSSv3
CVE-2023-25619
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when communicating over the Modbus TCP protocol.
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon Momentum Unity M1e Processor Firmware
Schneider-electric Modicon Mc80 Firmware
Schneider-electric Tsxp57 Firmware
Schneider-electric Bmep58s Firmware
Schneider-electric Bmeh58s Firmware
6.5
CVSSv3
CVE-2023-25620
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious project file is loaded onto the controller by an authenticated user.
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon Momentum Unity M1e Processor Firmware
Schneider-electric Modicon Mc80 Firmware
Schneider-electric 140cpu65 Firmware
Schneider-electric Tsxp57 Firmware
Schneider-electric Bmep58s Firmware
Schneider-electric Bmeh58s Firmware
6.5
CVSSv3
CVE-2018-7851
CWE-119: Buffer errors vulnerability exists in Modicon M580 with firmware prior to V2.50, Modicon M340 with firmware prior to V3.01, BMxCRA312xx with firmware prior to V2.40, All firmware versions of Modicon Premium and 140CRA312xxx when sending a specially crafted Modbus packet,...
Schneider-electric M580 Firmware
Schneider-electric M340 Firmware
Schneider-electric Bmx/e Cra Firmware
Schneider-electric Modicon Premium Firmware
Schneider-electric 140cra312xxx Firmware
NA
CVE-2014-0754
Directory traversal vulnerability in SchneiderWEB on Schneider Electric Modicon PLC Ethernet modules 140CPU65x Exec prior to 5.5, 140NOC78x Exec prior to 1.62, 140NOE77x Exec prior to 6.2, BMXNOC0401 prior to 2.05, BMXNOE0100 prior to 2.9, BMXNOE0110x Exec prior to 6.0, TSXETC101...
Schneider-electric Stbnic2212 Firmware -
Schneider-electric Stbnip2212 Firmware -
Schneider-electric Tsxetc0101 Firmware -
Schneider-electric Tsxetc100 Firmware -
Schneider-electric Tsxp573623mc Firmware -
Schneider-electric Tsxety110ws Firmware -
Schneider-electric Tsxp574634m Firmware -
Schneider-electric Tsxety110wsc Firmware -
Schneider-electric Tsxp574823am Firmware -
Schneider-electric Tsxety4103 Firmware -
Schneider-electric Tsxp574823m Firmware -
Schneider-electric Tsxety4103c Firmware -
Schneider-electric Tsxp574823mc Firmware -
Schneider-electric Tsxety5103 Firmware -
Schneider-electric Tsxp575634m Firmware -
Schneider-electric Tsxety5103c Firmware -
Schneider-electric Tsxp576634m Firmware -
Schneider-electric Tsxetz410 Firmware -
Schneider-electric Tsxwmy100 Firmware -
Schneider-electric Tsxetz510 Firmware -
Schneider-electric Tsxwmy100c Firmware -
Schneider-electric Tsxntp100 Firmware -
7.5
CVSSv3
CVE-2022-34761
A CWE-476: NULL Pointer Dereference vulnerability exists that could cause a denial of service of the webserver when parsing JSON content type. Affected Products: X80 advanced RTU Communication Module (BMENOR2200H) (V2.01 and later), OPC UA Modicon Communication Module (BMENUA0100...
Schneider-electric Opc Ua Module For M580 Firmware
Schneider-electric X80 Advanced Rtu Module Firmware
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »