Vulnerabilities (CVE)

Filtered by vendor Schneider-electric Subscribe

Filtered by product Bmeh582040c

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-7838	1 Schneider-electric	36 Bmeh582040, Bmeh582040 Firmware, Bmeh582040c and 33 more	2021-08-18	7.8 HIGH	7.5 HIGH
A CWE-119 Buffer Errors vulnerability exists in Modicon M580 CPU - BMEP582040, all versions before V2.90, and Modicon Ethernet Module BMENOC0301, all versions before V2.16, which could cause denial of service on the FTP service of the controller or the Ethernet BMENOC module when it receives a FTP CWD command with a data length greater than 1020 bytes. A power cycle is then needed to reactivate the FTP service.
CVE-2019-6819	1 Schneider-electric	38 Bmeh582040, Bmeh582040c, Bmeh584040 and 35 more	2021-08-18	5.0 MEDIUM	7.5 HIGH
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.80, All firmware versions of Modicon Quantum and Modicon Premium.