Skip to main content

Bmxnor0200H Rtu Firmware

3 CVEs product

Monthly

CVE-2021-22788 HIGH PATCH This Week

A CWE-787: Out-of-bounds Write vulnerability exists that could cause denial of service when an attacker sends a specially crafted HTTP request to the web server of the device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Memory Corruption Denial Of Service Modicon M340 Bmxp342020 Firmware Bmxnoe0100 Firmware +12
NVD VulDB
CVSS 3.1
7.5
EPSS
1.4%
CVE-2021-22787 HIGH PATCH This Week

A CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of the device when an attacker sends a specially crafted HTTP request to the web server of the device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Modicon M340 Bmxp342020 Firmware Bmxnoe0100 Firmware Bmxnoe0110 Firmware Bmxnoc0401 Firmware +10
NVD VulDB
CVSS 3.1
7.5
EPSS
0.4%
CVE-2021-22785 HIGH PATCH This Week

A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Modicon M340 Bmxp342020 Firmware Bmxnoe0100 Firmware Bmxnoe0110 Firmware Bmxnoc0401 Firmware +10
NVD VulDB
CVSS 3.1
7.5
EPSS
0.4%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

A CWE-787: Out-of-bounds Write vulnerability exists that could cause denial of service when an attacker sends a specially crafted HTTP request to the web server of the device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Memory Corruption Denial Of Service +14
NVD VulDB
EPSS 0% CVSS 7.5
HIGH PATCH This Week

A CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of the device when an attacker sends a specially crafted HTTP request to the web server of the device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Modicon M340 Bmxp342020 Firmware Bmxnoe0100 Firmware +12
NVD VulDB
EPSS 0% CVSS 7.5
HIGH PATCH This Week

A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Modicon M340 Bmxp342020 Firmware Bmxnoe0100 Firmware +12
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy