RSS   Vulnerabilities for 'Modicon m340'   RSS

2013-04-04
 
CVE-2013-2763

CWE-119
 

 
** DISPUTED ** The Schneider Electric M340 PLC modules allow remote attackers to cause a denial of service (resource consumption) via unspecified vectors. NOTE: the vendor reportedly disputes this issue because it "could not be duplicated" and "an attacker could not remotely exploit this observed behavior to deny PLC control functions."

 
 
CVE-2013-2761

CWE-119
 

 
The Schneider Electric M340 BMXNOE01xx and BMXP3420xx PLC modules allow remote authenticated users to cause a denial of service (module crash) via crafted FTP traffic, as demonstrated by the FileZilla FTP client.

 
 
CVE-2013-0664

CWE-noinfo
 

 
The FactoryCast service on the Schneider Electric Quantum 140NOE77111 and 140NWM10000, M340 BMXNOE0110x, and Premium TSXETY5103 PLC modules allows remote authenticated users to send Modbus messages, and consequently execute arbitrary code, by embedding these messages in SOAP HTTP POST requests.

 
 
CVE-2013-0663

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability on the Schneider Electric Quantum 140NOE77111, 140NOE77101, and 140NWM10000; M340 BMXNOC0401, BMXNOE0100x, and BMXNOE011xx; and Premium TSXETY4103, TSXETY5103, and TSXWMY100 PLC modules allows remote attackers to hijack the authentication of arbitrary users for requests that execute commands, as demonstrated by modifying HTTP credentials.

 

 >>> Vendor: Schneider-electric 299 Products
Power manager
Software update
Citectfacilities
Citectscada
Clearscada 2005
Clearscada 2007
Clearscada 2009
Monitor pro
Opc factory server
Pl7 pro
Telemecanique driver pack
Unity pro
Vijeo citect
Citecthistorian
Citectscada reports
Vijeo historian
M340 ethernet module bmxnoe0100
M340 ethernet module bmxnoe0110
M340 ethernet module bmxp342020
M340 ethernet module bmxp342030
Premium ethernet module tsxety4103
Premium ethernet module tsxety5103
Premium ethernet module tsxp57163m
Premium ethernet module tsxp572634m
Premium ethernet module tsxp573634m
Premium ethernet module tsxp574634m
Premium ethernet module tsxp575634m
Premium ethernet module tsxp576634m
Quantum ethernet module 140cpu65150
Quantum ethernet module 140cpu65160
Quantum ethernet module 140cpu65260
Quantum ethernet module 140noe77100
Quantum ethernet module 140noe77101
Quantum ethernet module 140noe77111
Stb dio ethernet module stbnic2212
Stb dio ethernet module stbnip2212
Stb dio ethernet module stbnip2311
Modicon quantum plc
Wonderware historian
Wonderware intouch
Software update utility
Interactive graphical scada system
Accutech manager
Modicon m340
Modicon premium
Magelis xbt hmi
Micom s1 studio
Kerweb
Kerwin
Tburjr900
Tburjr900 firmware
Clearscada
Scada expert clearscada
Telvent sage 3030
Telvent sage 3030 firmware
Struxureware scada expert vijeo citect
Struxureware powerscada expert
Powerlogic scada
Floating license manager
Ofs test client tlxcdlfofs33
Ofs test client tlxcdltofs33
Ofs test client tlxcdluofs33
Ofs test client tlxcdstofs33
Ofs test client tlxcdsuofs33
Concept
Modbus serial driver
Modbuscommdtm sl
PL7
Powersuite
Sft2841
Somachine
Somove
Twidosuite
Unityloader
Opc factory server tlxcdlfofs
Opc factory server tlxcdltofs
Opc factory server tlxcdluofs
Opc factory server tlxcdstofs
Opc factory server tlxcdsuofs
Vampset
Modicon plc ethernet module
Proclima
Wonderware intouch access anywhere server
Tsxetg3000
Tsxetg3010
Tsxetg3021
Tsxetg3022
Etg3000 factorycast hmi gateway firmware
Somove lite
Device type manager
Indusoft web studio
Wonderware intouch 2014
Wonderware system platform 2014
Imt25 magnetic flow dtm
Bmxnoc0401
Bmxnoe0100
Bmxnoe0100h
Bmxnoe0110
Bmxnoe0110h
Bmxnor0200
See all Products for Vendor Schneider-electric


Copyright 2024, cxsecurity.com

 

Back to Top