CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
58.5%
The Schneider Electric M340 PLC modules allow remote attackers to cause a denial of service (resource consumption) via unspecified vectors. NOTE: the vendor reportedly disputes this issue because it “could not be duplicated” and "an attacker could not remotely exploit this observed behavior to deny PLC control functions.
Vendor | Product | Version | CPE |
---|---|---|---|
schneider-electric | modicon_m340_bmx_noc_0401_firmware | - | cpe:2.3:o:schneider-electric:modicon_m340_bmx_noc_0401_firmware:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noc_0401 | - | cpe:2.3:h:schneider-electric:modicon_m340_bmx_noc_0401:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0100_firmware | - | cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100_firmware:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0100 | - | cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0100h_firmware | - | cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100h_firmware:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0100h | - | cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100h:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0110_firmware | - | cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110_firmware:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0110 | - | cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0110h_firmware | - | cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110h_firmware:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_bmx_noe_0110h | - | cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110h:-:*:*:*:*:*:*:* |