RSS   Podatności dla 'Modicon m251 firmware'   RSS

2019-05-22
 
CVE-2019-6820

CWE-306
 

 
A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a modification of device IP configuration (IP address, network mask and gateway IP address) when a specific Ethernet frame is received in all versions of: Modicon M100, Modicon M200, Modicon M221, ATV IMC drive controller, Modicon M241, Modicon M251, Modicon M258, Modicon LMC058, Modicon LMC078, PacDrive Eco ,PacDrive Pro, PacDrive Pro2

 
2017-06-29
 
CVE-2017-6030

CWE-331
 

 
A Predictable Value Range from Previous Values issue was discovered in Schneider Electric Modicon PLCs Modicon M221, firmware versions prior to Version 1.5.0.0, Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The affected products generate insufficiently random TCP initial sequence numbers that may allow an attacker to predict the numbers from previous values. This may allow an attacker to spoof or disrupt TCP connections.

 
 
CVE-2017-6028

CWE-522
 

 
An Insufficiently Protected Credentials issue was discovered in Schneider Electric Modicon PLCs Modicon M241, all firmware versions, and Modicon M251, all firmware versions. Log-in credentials are sent over the network with Base64 encoding leaving them susceptible to sniffing. Sniffed credentials could then be used to log into the web application.

 
 
CVE-2017-6026

CWE-330
 

 
A Use of Insufficiently Random Values issue was discovered in Schneider Electric Modicon PLCs Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The session numbers generated by the web application are lacking randomization and are shared between several users. This may allow a current session to be compromised.

 

 >>> Vendor: Schneider-electric 299 Produkty
Power manager
Software update
Citectfacilities
Citectscada
Clearscada 2005
Clearscada 2007
Clearscada 2009
Monitor pro
Opc factory server
Pl7 pro
Telemecanique driver pack
Unity pro
Vijeo citect
Citecthistorian
Citectscada reports
Vijeo historian
M340 ethernet module bmxnoe0100
M340 ethernet module bmxnoe0110
M340 ethernet module bmxp342020
M340 ethernet module bmxp342030
Premium ethernet module tsxety4103
Premium ethernet module tsxety5103
Premium ethernet module tsxp57163m
Premium ethernet module tsxp572634m
Premium ethernet module tsxp573634m
Premium ethernet module tsxp574634m
Premium ethernet module tsxp575634m
Premium ethernet module tsxp576634m
Quantum ethernet module 140cpu65150
Quantum ethernet module 140cpu65160
Quantum ethernet module 140cpu65260
Quantum ethernet module 140noe77100
Quantum ethernet module 140noe77101
Quantum ethernet module 140noe77111
Stb dio ethernet module stbnic2212
Stb dio ethernet module stbnip2212
Stb dio ethernet module stbnip2311
Modicon quantum plc
Wonderware historian
Wonderware intouch
Software update utility
Interactive graphical scada system
Accutech manager
Modicon m340
Modicon premium
Magelis xbt hmi
Micom s1 studio
Kerweb
Kerwin
Tburjr900
Tburjr900 firmware
Clearscada
Scada expert clearscada
Telvent sage 3030
Telvent sage 3030 firmware
Struxureware scada expert vijeo citect
Struxureware powerscada expert
Powerlogic scada
Floating license manager
Ofs test client tlxcdlfofs33
Ofs test client tlxcdltofs33
Ofs test client tlxcdluofs33
Ofs test client tlxcdstofs33
Ofs test client tlxcdsuofs33
Concept
Modbus serial driver
Modbuscommdtm sl
PL7
Powersuite
Sft2841
Somachine
Somove
Twidosuite
Unityloader
Opc factory server tlxcdlfofs
Opc factory server tlxcdltofs
Opc factory server tlxcdluofs
Opc factory server tlxcdstofs
Opc factory server tlxcdsuofs
Vampset
Modicon plc ethernet module
Proclima
Wonderware intouch access anywhere server
Tsxetg3000
Tsxetg3010
Tsxetg3021
Tsxetg3022
Etg3000 factorycast hmi gateway firmware
Somove lite
Device type manager
Indusoft web studio
Wonderware intouch 2014
Wonderware system platform 2014
Imt25 magnetic flow dtm
Bmxnoc0401
Bmxnoe0100
Bmxnoe0100h
Bmxnoe0110
Bmxnoe0110h
Bmxnor0200
Zobacz wszystkie produkty dla producenta Schneider-electric


Copyright 2024, cxsecurity.com

 

Back to Top