Schneider-electric Modicon M221 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Modicon M221 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2018-7791 — CVSS 9.8 (critical): A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product (all references, all…
CVE-2020-7489 — CVSS 9.8 (critical): A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability exists on…
CVE-2018-7790 — CVSS 9.8 (critical): An Information Management Error vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to…
CVE-2019-6820 — CVSS 8.2 (high): A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a modification of device IP configuration…
CVE-2018-7792 — CVSS 7.5 (high): A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product (all references, all…
CVE-2018-7821 — CVSS 7.5 (high): An Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to…
CVE-2018-7789 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability exists in Schneider Electric's Modicon M221 product (all references…
CVE-2020-7566 — CVSS 7.3 (high): A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker…
CVE-2020-7565 — CVSS 7.3 (high): A CWE-326: Inadequate Encryption Strength vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker…
CVE-2017-6030 — CVSS 6.5 (medium): A predictable value range from previous values issue was discovered in Schneider Electric Modicon PLCs Modicon M221, firmware versions…
CVE-2020-7567 — CVSS 5.7 (medium): A CWE-311: Missing Encryption of Sensitive Data vulnerability exists in Modicon M221 (all references, all versions) that could allow the…
CVE-2020-28214 — CVSS 5.5 (medium): A CWE-760: Use of a One-Way Hash with a Predictable Salt vulnerability exists in Modicon M221 (all references, all versions), that could…
CVE-2018-7822 — CVSS 5.5 (medium): An Incorrect Default Permissions (CWE-276) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all…
CVE-2018-7823 — CVSS 5.3 (medium): A Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to…
CVE-2020-7568 — CVSS 4.3 (medium): A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Modicon M221 (all references, all versions)…