CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
21.4%
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that
could cause denial of service of the controller when a malicious project file is loaded onto the
controller by an authenticated user.
Vendor | Product | Version | CPE |
---|---|---|---|
schneider-electric | modicon_m580_firmware | * | cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:* |
schneider-electric | modicon_m580 | - | cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:* |
schneider-electric | modicon_m340_firmware | * | cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:* |
schneider-electric | modicon_m340 | - | cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:* |
schneider-electric | modicon_momentum_unity_m1e_processor_firmware | * | cpe:2.3:o:schneider-electric:modicon_momentum_unity_m1e_processor_firmware:*:*:*:*:*:*:*:* |
schneider-electric | modicon_momentum_unity_m1e_processor | - | cpe:2.3:h:schneider-electric:modicon_momentum_unity_m1e_processor:-:*:*:*:*:*:*:* |
schneider-electric | modicon_mc80_firmware | * | cpe:2.3:o:schneider-electric:modicon_mc80_firmware:*:*:*:*:*:*:*:* |
schneider-electric | modicon_mc80 | - | cpe:2.3:h:schneider-electric:modicon_mc80:-:*:*:*:*:*:*:* |
schneider-electric | 140cpu65_firmware | * | cpe:2.3:o:schneider-electric:140cpu65_firmware:*:*:*:*:*:*:*:* |
schneider-electric | 140cpu65 | - | cpe:2.3:h:schneider-electric:140cpu65:-:*:*:*:*:*:*:* |