CRITICALπŸ‡΅πŸ‡± Wersja polska

CVE-2019-6816

CVSS 9.1v3.0pub. 2019-05-22upd. 2024-11-21

In Modicon Quantum all firmware versions, a CWE-94: Code Injection vulnerability could cause an unauthorized firmware modification with possible Denial of Service when using Modbus protocol.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
  • Schneider Electric Modicon Quantum

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Modicon Quantum Firmware

    OS
    Schneider-Electric
    wszystkie wersje
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2018-7847CRITICAL9.8ten sam produkt

A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Mod...

CVE-2019-6808CRITICAL9.8ten sam produkt

A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Mod...

CVE-2018-7842CRITICAL9.8ten sam produkt

A CWE-290: Authentication Bypass by Spoofing vulnerability exists in all versions of the Modicon M580, Modicon...

CVE-2018-7846CRITICAL9.8ten sam produkt

A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of th...

CVE-2019-6815CRITICAL9.1ten sam produkt

In Modicon Quantum all firmware versions, CWE-264: Permissions, Privileges, and Access Control vulnerabilities...

CVE-2019-6816 β€” Schneider-Electric β€” Modicon Quantum β€” CRITICAL β€” CVSS 9.1 | CVEbaza.pl