CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Schneider-Electric: >> 140cpu65160 Firmware Security Vulnerabilities

CVE-2018-7760

An authorization bypass vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. Requests to CGI functions allow malicious users to bypass authorization.

CVSS Score

9.8

EPSS Score

0.002

Published

2018-04-18

CVE-2018-7761

A vulnerability exists in the HTTP request parser in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200 which could allow arbitrary code execution.

CVSS Score

9.8

EPSS Score

0.006

Published

2018-04-18

CVE-2018-7762

A vulnerability exists in the web services to process SOAP requests in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200 which could allow result in a buffer overflow.

CVSS Score

7.5

EPSS Score

0.008

Published

2018-04-18

Page 2

Vulnerabilities

Vulnerable Software

Schneider-Electric: >> 140cpu65160 Firmware Security Vulnerabilities

Products

Pricing

Contact Us