Schneider-electric Modicom Bmxnor0200h Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Modicom Bmxnor0200h Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2018-7811 — CVSS 9.8 (critical): An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200…
CVE-2018-7809 — CVSS 9.8 (critical): An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200…
CVE-2018-7831 — CVSS 8.8 (high): An Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability exists in the embedded web servers in all…
CVE-2018-7833 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability exists in the embedded web servers in all Modicon M340, Premium…
CVE-2018-7812 — CVSS 7.5 (high): An Information Exposure through Discrepancy vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and…
CVE-2018-7830 — CVSS 7.5 (high): Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') vulnerability exists in the embedded web servers in…
CVE-2018-7810 — CVSS 6.1 (medium): An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists in the embedded web servers in…
CVE-2018-7804 — CVSS 6.1 (medium): A URL Redirection to Untrusted Site vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and…