Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
schneider-electric bmxnor0200h - vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-22749
A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Modicon X80 BMXNOR0200H RTU SV1.70 IR22 and prior that could cause information leak concerning the current RTU configuration including communication parameters dedicated to telemetry, wh...
Schneider-electric Modicon X80 Bmxnor0200h Rtu Firmware Sv1.6
Schneider-electric Modicon X80 Bmxnor0200h Rtu Firmware Sv1.7
7.8
CVSSv2
CVE-2019-6813
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions) and Modicon M340 controller (all firmware versions), which could cause denial of service when truncated SNMP packets on port 16...
Schneider-electric Modicon M340 Firmware
Schneider-electric Bmxnor0200h Firmware -
6.5
CVSSv2
CVE-2019-6810
CWE-284: Improper Access Control vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions), which could cause the execution of commands by unauthorized users when using IEC 60870-5-104 protocol.
Schneider-electric Bmxnor0200h Firmware
5
CVSSv2
CVE-2019-6831
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions), which could cause disconnection of active connections when an unusually high number of IEC 60870- 5-104 packets are received b...
Schneider-electric Bmxnor0200h Firmware
4.3
CVSSv2
CVE-2018-7810
An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 allowing an malicious user to craft a URL containing JavaScript that will b...
Schneider-electric Modicom M340 Firmware
Schneider-electric Modicom Premium Firmware
Schneider-electric Modicom Quantum Firmware
Schneider-electric Modicom Bmxnor0200h Firmware
5
CVSSv2
CVE-2018-7812
An Information Exposure through Discrepancy vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where the web server sends different responses in a way that exposes security-relevant information about the state of the product...
Schneider-electric Modicom M340 Firmware
Schneider-electric Modicom Premium Firmware
Schneider-electric Modicom Quantum Firmware
Schneider-electric Modicom Bmxnor0200h Firmware
5.8
CVSSv2
CVE-2018-7804
A URL Redirection to Untrusted Site vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a user clicking on a specially crafted link can be redirected to a URL of the attacker's choosing.
Schneider-electric Modicom M340 Firmware
Schneider-electric Modicom Premium Firmware
Schneider-electric Modicom Quantum Firmware
Schneider-electric Modicom Bmxnor0200h Firmware
6.4
CVSSv2
CVE-2018-7809
An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an unauthenticated remote user to access the password delete function of the web server.
Schneider-electric Modicom M340 Firmware
Schneider-electric Modicom Premium Firmware
Schneider-electric Modicom Quantum Firmware
Schneider-electric Modicom Bmxnor0200h Firmware
5
CVSSv2
CVE-2018-7811
An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an unauthenticated remote user to access the change password function of the web server
Schneider-electric Modicom M340 Firmware
Schneider-electric Modicom Premium Firmware
Schneider-electric Modicom Quantum Firmware
Schneider-electric Modicom Bmxnor0200h Firmware
5
CVSSv2
CVE-2018-7830
Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a denial of service can occur for ~1 minute by sending a specially craf...
Schneider-electric Modicom M340 Firmware
Schneider-electric Modicom Premium Firmware
Schneider-electric Modicom Quantum Firmware
Schneider-electric Modicom Bmxnor0200h Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »