CVE-2019-6808

A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a remote code execution by overwriting configuration settings of the controller over Modbus.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*

Information

Published : 2019-05-22 14:29

Updated : 2022-02-03 06:26


NVD link : CVE-2019-6808

Mitre link : CVE-2019-6808


JSON object : View

CWE
CWE-306

Missing Authentication for Critical Function

Advertisement

dedicated server usa

Products Affected

schneider-electric

  • modicon_premium
  • modicon_quantum_firmware
  • modicon_quantum
  • modicon_m580_firmware
  • modicon_m340_firmware
  • modicon_m340
  • modicon_premium_firmware
  • modicon_m580