HIGH🇵🇱 Wersja polska

CVE-2013-0662

CVSS 9.3v2.0pub. 2014-04-01upd. 2026-05-06

Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.

CVSS Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
  • Schneider Electric Somachine

    APP
    Schneider Electric
    3.0
  • Schneider Electric Concept

    APP
    Schneider-Electric
    ≤ 2.6
  • Schneider Electric Modbuscommdtm Sl

    APP
    Schneider-Electric
    ≤ 2.1.2
  • Schneider Electric Modbus Serial Driver

    APP
    Schneider-Electric
    1.102.23.2
  • Schneider Electric Opc Factory Server

    APP
    Schneider-Electric
    3.343.35≤ 3.5.0
  • Schneider Electric Pl7

    APP
    Schneider-Electric
    ≤ 4.5
  • Schneider Electric Powersuite

    APP
    Schneider-Electric
    ≤ 2.6
  • Schneider Electric Sft2841

    APP
    Schneider-Electric
    13.1≤ 14.0
  • Schneider Electric Somachine

    APP
    Schneider-Electric
    2.03.0≤ 3.1
  • Schneider Electric Somove

    APP
    Schneider-Electric
    ≤ 1.7
  • Schneider Electric Twidosuite

    APP
    Schneider-Electric
    ≤ 2.31.04
  • Schneider Electric Unityloader

    APP
    Schneider-Electric
    ≤ 2.3
  • Schneider Electric Unity Pro

    APP
    Schneider-Electric
    6.0≤ 7.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2020-7487CRITICAL9.8ten sam produkt

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists which could allow the attacker ...

CVE-2020-7475CRITICAL9.8ten sam produkt

A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), ...

CVE-2017-7574CRITICAL9.8ten sam produkt

Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a ha...

CVE-2020-7560HIGH8.6ten sam produkt

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and U...

CVE-2020-7523HIGH7.8ten sam produkt

Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver (see security no...