Skip to main content

Modicon M340 Bmxp342020

5 CVEs product

Monthly

CVE-2021-22792 HIGH PATCH This Week

A CWE-476: NULL Pointer Dereference vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Null Pointer Dereference Modicon M340 Bmxp341000 Modicon M340 Bmxp342010 Modicon M340 Bmxp342020 +46
NVD VulDB
CVSS 3.1
7.5
EPSS
0.5%
CVE-2021-22791 MEDIUM PATCH This Month

A CWE-787: Out-of-bounds Write vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Memory Corruption Buffer Overflow Modicon M340 Bmxp341000 Modicon M340 Bmxp342010 +47
NVD VulDB
CVSS 3.1
6.5
EPSS
0.4%
CVE-2021-22790 MEDIUM PATCH This Month

A CWE-125: Out-of-bounds Read vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Denial Of Service Buffer Overflow Modicon M340 Bmxp341000 Modicon M340 Bmxp342010 +47
NVD VulDB
CVSS 3.1
6.5
EPSS
0.4%
CVE-2021-22789 MEDIUM PATCH This Month

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Denial Of Service Buffer Overflow Modicon M340 Bmxp341000 Modicon M340 Bmxp342010 Modicon M340 Bmxp342020 +46
NVD VulDB
CVSS 3.1
6.5
EPSS
0.4%
CVE-2015-7937 CRITICAL Act Now

Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Schneider Electric Buffer Overflow RCE Bmxnoc0401 Bmxnoe0100 +11
NVD
CVSS 2.0
10.0
EPSS
1.9%
EPSS 0% CVSS 7.5
HIGH PATCH This Week

A CWE-476: NULL Pointer Dereference vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Null Pointer Dereference Modicon M340 Bmxp341000 +48
NVD VulDB
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

A CWE-787: Out-of-bounds Write vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Memory Corruption Buffer Overflow +49
NVD VulDB
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

A CWE-125: Out-of-bounds Read vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Denial Of Service Buffer Overflow +49
NVD VulDB
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Denial Of Service Buffer Overflow Modicon M340 Bmxp341000 +48
NVD VulDB
EPSS 2% CVSS 10.0
CRITICAL Act Now

Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Schneider Electric Buffer Overflow RCE +13
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy