Product:

Modicon_m340_bmxp342030

(Schneider\-Electric)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 5
Date Id Summary Products Score Patch Annotated
2021-09-02 CVE-2021-22789 A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all... Modicon_m340_bmxp341000, Modicon_m340_bmxp342010, Modicon_m340_bmxp342020, Modicon_m340_bmxp342030, Modicon_m580_bmeh582040, Modicon_m580_bmeh582040c, Modicon_m580_bmeh582040s, Modicon_m580_bmeh584040, Modicon_m580_bmeh584040c, Modicon_m580_bmeh584040s, Modicon_m580_bmeh586040, Modicon_m580_bmeh586040c, Modicon_m580_bmeh586040s, Modicon_m580_bmep581020, Modicon_m580_bmep581020h, Modicon_m580_bmep582020, Modicon_m580_bmep582020h, Modicon_m580_bmep582040, Modicon_m580_bmep582040h, Modicon_m580_bmep582040s, Modicon_m580_bmep583020, Modicon_m580_bmep583040, Modicon_m580_bmep584020, Modicon_m580_bmep584040, Modicon_m580_bmep584040s, Modicon_m580_bmep585040, Modicon_m580_bmep585040c, Modicon_m580_bmep586040, Modicon_m580_bmep586040c, Modicon_mc80_bmkc8020301, Modicon_mc80_bmkc8020310, Modicon_mc80_bmkc8030311, Modicon_momentum_171cbu78090, Modicon_momentum_171cbu98090, Modicon_momentum_171cbu98091, Modicon_premium_tsxp57_1634m, Modicon_premium_tsxp57_2634m, Modicon_premium_tsxp57_2834m, Modicon_premium_tsxp57_454m, Modicon_premium_tsxp57_4634m, Modicon_premium_tsxp57_554m, Modicon_premium_tsxp57_5634m, Modicon_premium_tsxp57_6634m, Modicon_quantum_140cpu65150, Modicon_quantum_140cpu65150c, Modicon_quantum_140cpu65160, Modicon_quantum_140cpu65160c, Plc_simulator_for_ecostruxure_control_expert, Plc_simulator_for_ecostruxure_process_expert 6.5
2021-09-02 CVE-2021-22790 A CWE-125: Out-of-bounds Read vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert,... Modicon_m340_bmxp341000, Modicon_m340_bmxp342010, Modicon_m340_bmxp342020, Modicon_m340_bmxp342030, Modicon_m580_bmeh582040, Modicon_m580_bmeh582040c, Modicon_m580_bmeh582040s, Modicon_m580_bmeh584040, Modicon_m580_bmeh584040c, Modicon_m580_bmeh584040s, Modicon_m580_bmeh586040, Modicon_m580_bmeh586040c, Modicon_m580_bmeh586040s, Modicon_m580_bmep581020, Modicon_m580_bmep581020h, Modicon_m580_bmep582020, Modicon_m580_bmep582020h, Modicon_m580_bmep582040, Modicon_m580_bmep582040h, Modicon_m580_bmep582040s, Modicon_m580_bmep583020, Modicon_m580_bmep583040, Modicon_m580_bmep584020, Modicon_m580_bmep584040, Modicon_m580_bmep584040s, Modicon_m580_bmep585040, Modicon_m580_bmep585040c, Modicon_m580_bmep586040, Modicon_m580_bmep586040c, Modicon_mc80_bmkc8020301, Modicon_mc80_bmkc8020310, Modicon_mc80_bmkc8030311, Modicon_momentum_171cbu78090, Modicon_momentum_171cbu98090, Modicon_momentum_171cbu98091, Modicon_premium_tsxp57_1634m, Modicon_premium_tsxp57_2634m, Modicon_premium_tsxp57_2834m, Modicon_premium_tsxp57_454m, Modicon_premium_tsxp57_4634m, Modicon_premium_tsxp57_554m, Modicon_premium_tsxp57_5634m, Modicon_premium_tsxp57_6634m, Modicon_quantum_140cpu65150, Modicon_quantum_140cpu65150c, Modicon_quantum_140cpu65160, Modicon_quantum_140cpu65160c, Plc_simulator_for_ecostruxure_control_expert, Plc_simulator_for_ecostruxure_process_expert 6.5
2021-09-02 CVE-2021-22791 A CWE-787: Out-of-bounds Write vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert,... Modicon_m340_bmxp341000, Modicon_m340_bmxp342010, Modicon_m340_bmxp342020, Modicon_m340_bmxp342030, Modicon_m580_bmeh582040, Modicon_m580_bmeh582040c, Modicon_m580_bmeh582040s, Modicon_m580_bmeh584040, Modicon_m580_bmeh584040c, Modicon_m580_bmeh584040s, Modicon_m580_bmeh586040, Modicon_m580_bmeh586040c, Modicon_m580_bmeh586040s, Modicon_m580_bmep581020, Modicon_m580_bmep581020h, Modicon_m580_bmep582020, Modicon_m580_bmep582020h, Modicon_m580_bmep582040, Modicon_m580_bmep582040h, Modicon_m580_bmep582040s, Modicon_m580_bmep583020, Modicon_m580_bmep583040, Modicon_m580_bmep584020, Modicon_m580_bmep584040, Modicon_m580_bmep584040s, Modicon_m580_bmep585040, Modicon_m580_bmep585040c, Modicon_m580_bmep586040, Modicon_m580_bmep586040c, Modicon_mc80_bmkc8020301, Modicon_mc80_bmkc8020310, Modicon_mc80_bmkc8030311, Modicon_momentum_171cbu78090, Modicon_momentum_171cbu98090, Modicon_momentum_171cbu98091, Modicon_premium_tsxp57_1634m, Modicon_premium_tsxp57_2634m, Modicon_premium_tsxp57_2834m, Modicon_premium_tsxp57_454m, Modicon_premium_tsxp57_4634m, Modicon_premium_tsxp57_554m, Modicon_premium_tsxp57_5634m, Modicon_premium_tsxp57_6634m, Modicon_quantum_140cpu65150, Modicon_quantum_140cpu65150c, Modicon_quantum_140cpu65160, Modicon_quantum_140cpu65160c, Plc_simulator_for_ecostruxure_control_expert, Plc_simulator_for_ecostruxure_process_expert 6.5
2021-09-02 CVE-2021-22792 A CWE-476: NULL Pointer Dereference vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control... Modicon_m340_bmxp341000, Modicon_m340_bmxp342010, Modicon_m340_bmxp342020, Modicon_m340_bmxp342030, Modicon_m580_bmeh582040, Modicon_m580_bmeh582040c, Modicon_m580_bmeh582040s, Modicon_m580_bmeh584040, Modicon_m580_bmeh584040c, Modicon_m580_bmeh584040s, Modicon_m580_bmeh586040, Modicon_m580_bmeh586040c, Modicon_m580_bmeh586040s, Modicon_m580_bmep581020, Modicon_m580_bmep581020h, Modicon_m580_bmep582020, Modicon_m580_bmep582020h, Modicon_m580_bmep582040, Modicon_m580_bmep582040h, Modicon_m580_bmep582040s, Modicon_m580_bmep583020, Modicon_m580_bmep583040, Modicon_m580_bmep584020, Modicon_m580_bmep584040, Modicon_m580_bmep584040s, Modicon_m580_bmep585040, Modicon_m580_bmep585040c, Modicon_m580_bmep586040, Modicon_m580_bmep586040c, Modicon_mc80_bmkc8020301, Modicon_mc80_bmkc8020310, Modicon_mc80_bmkc8030311, Modicon_momentum_171cbu78090, Modicon_momentum_171cbu98090, Modicon_momentum_171cbu98091, Modicon_premium_tsxp57_1634m, Modicon_premium_tsxp57_2634m, Modicon_premium_tsxp57_2834m, Modicon_premium_tsxp57_454m, Modicon_premium_tsxp57_4634m, Modicon_premium_tsxp57_554m, Modicon_premium_tsxp57_5634m, Modicon_premium_tsxp57_6634m, Modicon_quantum_140cpu65150, Modicon_quantum_140cpu65150c, Modicon_quantum_140cpu65160, Modicon_quantum_140cpu65160c, Plc_simulator_for_ecostruxure_control_expert, Plc_simulator_for_ecostruxure_process_expert 7.5
2015-12-21 CVE-2015-7937 Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data. Bmxnoc0401, Bmxnoe0100, Bmxnoe0100h, Bmxnoe0110, Bmxnoe0110h, Bmxnor0200, Bmxnor0200h, Bmxpra0100, Modicon_m340_bmxp342020, Modicon_m340_bmxp342020h, Modicon_m340_bmxp342030, Modicon_m340_bmxp3420302, Modicon_m340_bmxp3420302h N/A