Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
quantum vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-1115
A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.
Imagemagick Imagemagick
7.2
CVSSv3
CVE-2019-3914
Remote command injection vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows a remote, authenticated malicious user to execute arbitrary commands on the target device by adding an access control rule for a network object with a crafted hostna...
Verizon Fios Quantum Gateway G1100 Firmware 02.01.00.05
7.5
CVSSv3
CVE-2019-6856
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing specific physical memory block...
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Tsxh5744m Firmware
Schneider-electric Tsxh5724m Firmware
Schneider-electric Tsxp576634m Firmware
Schneider-electric Tsxp57554m Firmware
Schneider-electric Tsxp575634m Firmware
Schneider-electric Tsxp57454m Firmware
Schneider-electric Tsxp574634m Firmware
Schneider-electric Tsxp57354m Firmware
Schneider-electric Tsxp573634m Firmware
Schneider-electric Tsxp57304m Firmware
Schneider-electric Tsxp57254m Firmware
Schneider-electric Tsxp572634m Firmware
Schneider-electric Tsxp57204m Firmware
Schneider-electric Tsxp571634m Firmware
Schneider-electric Tsxp57154m Firmware
Schneider-electric Tsxp57104m Firmware
Schneider-electric 140cpu65150 Firmware
Schneider-electric 140cpu65160 Firmware
Schneider-electric 140cpu65260 Firmware
Schneider-electric 140cpu67261 Firmware
9.8
CVSSv3
CVE-2018-7842
A CWE-290: Authentication Bypass by Spoofing vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause an elevation of privilege by conducting a brute force attack on Modbus parameters sent to the controller.
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon Quantum Firmware
Schneider-electric Modicon Premium Firmware
1 Github repository
7.5
CVSSv3
CVE-2018-7759
A buffer overflow vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. The buffer overflow vulnerability is caused by the length of the source string specified (instead of the buffer size) as the number of bytes to be c...
Schneider-electric Bmxnor0200 Firmware -
Schneider-electric Bmxnor0200h Firmware -
Schneider-electric 140cpu65150 Firmware -
Schneider-electric 140cpu31110 Firmware -
Schneider-electric 140cpu43412u Firmware -
Schneider-electric 140cpu65160 Firmware -
Schneider-electric 140cpu65260 Firmware -
Schneider-electric 140cpu65860 Firmware -
Schneider-electric 140cpu65160s Firmware -
Schneider-electric 140cpu65150c Firmware -
Schneider-electric 140cpu31110c Firmware -
Schneider-electric 140cpu43412uc Firmware -
Schneider-electric 140cpu65160c Firmware -
Schneider-electric 140cpu65260c Firmware -
Schneider-electric 140cpu65860c Firmware -
Schneider-electric Modicon M340 Bmxp341000 Firmware -
Schneider-electric Modicon M340 Bmxp342000 Firmware -
Schneider-electric Modicon M340 Bmxp3420102 Firmware -
Schneider-electric Modicon M340 Bmxp3420102cl Firmware -
Schneider-electric Modicon M340 Bmxp342020 Firmware -
Schneider-electric Modicon M340 Bmxp3420302 Firmware -
Schneider-electric Modicon M340 Bmxp3420302cl Firmware -
7.5
CVSSv3
CVE-2018-7794
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading data with invalid index using ...
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Tsxh5744m Firmware
Schneider-electric Tsxh5724m Firmware
Schneider-electric Tsxp576634m Firmware
Schneider-electric Tsxp57554m Firmware
Schneider-electric Tsxp575634m Firmware
Schneider-electric Tsxp57454m Firmware
Schneider-electric Tsxp574634m Firmware
Schneider-electric Tsxp57354m Firmware
Schneider-electric Tsxp573634m Firmware
Schneider-electric Tsxp57304m Firmware
Schneider-electric Tsxp57254m Firmware
Schneider-electric Tsxp572634m Firmware
Schneider-electric Tsxp57204m Firmware
Schneider-electric Tsxp571634m Firmware
Schneider-electric Tsxp57154m Firmware
Schneider-electric Tsxp57104m Firmware
Schneider-electric 140cpu65150 Firmware
Schneider-electric 140cpu65160 Firmware
Schneider-electric 140cpu65260 Firmware
Schneider-electric 140cpu67261 Firmware
7.5
CVSSv3
CVE-2018-7849
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause a possible Denial of Service due to improper data integrity check when sending files the controller over Modbus.
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon Quantum Firmware
Schneider-electric Modicon Premium Firmware
1 Github repository
7.5
CVSSv3
CVE-2018-7830
Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a denial of service can occur for ~1 minute by sending a specially craf...
Schneider-electric Modicom M340 Firmware
Schneider-electric Modicom Premium Firmware
Schneider-electric Modicom Quantum Firmware
Schneider-electric Modicom Bmxnor0200h Firmware
7.5
CVSSv3
CVE-2018-7845
A CWE-125: Out-of-bounds Read vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of unexpected data from the controller when reading specific memory blocks in the controller over Modbus.
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon Quantum Firmware
Schneider-electric Modicon Premium Firmware
1 Github repository
9.8
CVSSv3
CVE-2018-7846
A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause unauthorized access by conducting a brute force attack on Modbus protocol to the contr...
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon Quantum Firmware
Schneider-electric Modicon Premium Firmware
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »