CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-0664

The FactoryCast service on the Schneider Electric Quantum 140NOE77111 and 140NWM10000, M340 BMXNOE0110x, and Premium TSXETY5103 PLC modules allows remote authenticated users to send Modbus messages, and consequently execute arbitrary code, by embedding these messages in SOAP HTTP POST requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 77.1%

CVSS Severity

CVSS v2 Score 8.5

References

Products affected by CVE-2013-0664

Schneider-Electric » Modicon M340 » Version: bmxnoe0110x

cpe:2.3:h:schneider-electric:modicon_m340:bmxnoe0110x
Schneider-Electric » Modicon Premium » Version: tsxety5103

cpe:2.3:h:schneider-electric:modicon_premium:tsxety5103
Schneider-Electric » Modicon Quantum Plc » Version: 140noe77111

cpe:2.3:h:schneider-electric:modicon_quantum_plc:140noe77111
Schneider-Electric » Modicon Quantum Plc » Version: 140nwm10000

cpe:2.3:h:schneider-electric:modicon_quantum_plc:140nwm10000

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-0664

Products

Pricing

Contact Us