Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a denial of service can occur for ~1 minute by sending a specially crafted HTTP request.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
schneider-electric modicom_m340_firmware |
||
schneider-electric modicom_premium_firmware |
||
schneider-electric modicom_quantum_firmware |
||
schneider-electric modicom_bmxnor0200h_firmware |
Vulmon