Schneider-electric Modicon M340 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Schneider-electric Modicon M340 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (39)
CVE-2020-7475 — CVSS 9.8 (critical): A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), reflective DLL, vulnerability…
CVE-2019-6808 — CVSS 9.8 (critical): A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon…
CVE-2018-7847 — CVSS 9.8 (critical): A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon…
CVE-2018-7842 — CVSS 9.8 (critical): A CWE-290: Authentication Bypass by Spoofing vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and…
CVE-2018-7846 — CVSS 9.8 (critical): A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340…
CVE-2018-7849 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium…
CVE-2018-7852 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2018-7853 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2018-7854 — CVSS 7.5 (high): A CWE-248 Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2018-7855 — CVSS 7.5 (high): A CWE-248 Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2018-7856 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2018-7857 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2019-6806 — CVSS 7.5 (high): A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon…
CVE-2019-6807 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2019-6809 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware versions prior to V2.90), Modicon M340 (firmware versions…
CVE-2019-6813 — CVSS 7.5 (high): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all…
CVE-2019-6819 — CVSS 7.5 (high): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when…
CVE-2018-7794 — CVSS 7.5 (high): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum…
CVE-2018-7843 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2018-7844 — CVSS 7.5 (high): A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon…
CVE-2018-7845 — CVSS 7.5 (high): A CWE-125: Out-of-bounds Read vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium…
CVE-2018-7848 — CVSS 7.5 (high): A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon…
CVE-2019-6828 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists Modicon M580 (firmware version prior to V2.90), Modicon M340 (firmware version prior to…
CVE-2019-6829 — CVSS 7.5 (high): A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2.90) and Modicon M340 (firmware version…
CVE-2019-6845 — CVSS 7.5 (high): A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580, Modicon M340, Modicon Premium , Modicon…
CVE-2019-6851 — CVSS 7.5 (high): A CWE-538: File and Directory Information Exposure vulnerability exists in Modicon M580, Modicon M340, Modicon Premium , Modicon Quantum…
CVE-2019-6856 — CVSS 7.5 (high): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum…
CVE-2019-6857 — CVSS 7.5 (high): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum…
CVE-2023-25619 — CVSS 7.5 (high): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller…
CVE-2023-25620 — CVSS 6.5 (medium): A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller…
CVE-2019-6846 — CVSS 6.5 (medium): A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA…
CVE-2019-6821 — CVSS 6.5 (medium): CWE-330: Use of Insufficiently Random Values vulnerability, which could cause the hijacking of the TCP connection when using Ethernet…
CVE-2024-5056 — CVSS 6.5 (medium): CWE-552: Files or Directories Accessible to External Parties vulnerability exists which may prevent user to update the device firmware and…
CVE-2018-7850 — CVSS 5.3 (medium): A CWE-807: Reliance on Untrusted Inputs in a Security Decision vulnerability exists in all versions of the Modicon M580, Modicon M340…
CVE-2019-6844 — CVSS 4.9 (medium): A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA…
CVE-2019-6841 — CVSS 4.9 (medium): A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon…
CVE-2019-6842 — CVSS 4.9 (medium): A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA…
CVE-2019-6847 — CVSS 4.9 (medium): A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA…
CVE-2019-6843 — CVSS 4.9 (medium): A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon…