CVE-2019-6808
22.05.2019, 21:29
A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a remote code execution by overwriting configuration settings of the controller over Modbus.Enginsight
Vendor | Product | Version |
---|---|---|
schneider-electric | modicon_premium_firmware | 𝑥 ≤ 3.20 |
schneider-electric | modicon_quantum_firmware | 𝑥 ≤ 3.60 |
schneider-electric | modicon_m340_firmware | 𝑥 < 3.10 |
schneider-electric | modicon_m580_firmware | 𝑥 < 2.90 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration