CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4861

The modbus_125_handler function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device (aka the Quantum 140NOE771* module) allows remote attackers to install arbitrary firmware updates via a MODBUS 125 function code to TCP port 502.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.3%

CVSS Severity

CVSS v2 Score 10.0

References

http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1
http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1

Products affected by CVE-2011-4861

Schneider-Electric » Quantum Ethernet Module 140noe77100 » Version: Any

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140noe77100:*
Schneider-Electric » Quantum Ethernet Module 140noe77101 » Version: Any

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140noe77101:*
Schneider-Electric » Quantum Ethernet Module 140noe77111 » Version: Any

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140noe77111:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4861

Products

Pricing

Contact Us