Schneider-electric Modicon M218 Firmware 5.0.0.7

CPE Details

Schneider-electric Modicon M218 Firmware 5.0.0.7
schneider-electric
modicon_m218_firmware
5.0.0.7
2020-09-09
19h40 +00:00
2022-01-31
18h52 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:schneider-electric:modicon_m218_firmware:5.0.0.7:*:*:*:*:*:*:*

Informations

Vendor

schneider-electric

Product

modicon_m218_firmware

Version

5.0.0.7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-22800 2022-02-11 16h40 +00:00 A CWE-20: Improper Input Validation vulnerability exists that could cause a Denial of Service when a crafted packet is sent to the controller over network port 1105/TCP. Affected Product: Modicon M218 Logic Controller (V5.1.0.6 and prior)
7.5
High
CVE-2020-7524 2020-08-31 14h12 +00:00 Out-of-bounds Write vulnerability exists in Modicon M218 Logic Controller (V5.0.0.7 and prior) which could cause Denial of Service when sending specific crafted IPV4 packet to the controller: Sending a specific IPv4 protocol package to Schneider Electric Modicon M218 Logic Controller can cause IPv4 devices to go down. The device does not work properly and must be powered back on to return to normal.
7.5
High
CVE-2020-7488 2020-04-22 16h51 +00:00 A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak sensitive information transmitted between the software and the Modicon M218, M241, M251, and M258 controllers.
7.5
High
CVE-2020-7487 2020-04-22 16h50 +00:00 A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists which could allow the attacker to execute malicious code on the Modicon M218, M241, M251, and M258 controllers.
9.8
Critical