Schneider-electric 140noe77111 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric 140noe77111 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2020-7533 — CVSS 9.8 (critical): CWE-287: Improper Authentication vulnerability exists which could cause the execution of commands on the webserver without authentication…
CVE-2020-7540 — CVSS 9.8 (critical): A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon…
CVE-2020-7534 — CVSS 8.8 (high): A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists on the web server used, that could cause a leak of sensitive data or…
CVE-2020-7477 — CVSS 7.5 (high): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1…
CVE-2020-7535 — CVSS 7.5 (high): A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web…
CVE-2020-7539 — CVSS 7.5 (high): A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in the Web Server on Modicon M340, Legacy Offers…
CVE-2020-7541 — CVSS 5.3 (medium): A CWE-425: Direct Request ('Forced Browsing') vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and…
CVE-2020-7549 — CVSS 5.3 (medium): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in the Web Server on Modicon M340, Legacy Offers…