CPE-75EDB0A9-07A8-4255-B443-709EBE41B7D3 Détail

CPE Details

Schneider Electric MODICON M340 BMXP342020H FIRMWARE 3.40

Vendor

schneider-electric

Product

modicon_m340_bmxp342020h_firmware

Version

3.40

Created

2022-09-15
11h19 +00:00

Modifié

2022-09-15
12h27 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020h_firmware:3.40:::::::*

Informations

Vendor

schneider-electric

Product

modicon_m340_bmxp342020h_firmware

Version

3.40

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2023-6408	2024-02-14 16h52 +00:00	CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability exists that could cause a denial of service and loss of confidentiality, integrity of controllers when conducting a Man in the Middle attack.	8.1	Haute
CVE-2022-45789	2023-01-31 00h00 +00:00	A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert (All Versions), EcoStruxure Process Expert (All Versions), Modicon M340 CPU - part numbers BMXP34* (All Versions), Modicon M580 CPU - part numbers BMEP* and BMEH* (All Versions), Modicon M580 CPU Safety - part numbers BMEP58S and BMEH58S (All Versions)	9.8	Critique
CVE-2022-0222	2022-11-21 23h00 +00:00	A CWE-269: Improper Privilege Management vulnerability exists that could cause a denial of service of the Ethernet communication of the controller when sending a specific request over SNMP. Affected products: Modicon M340 CPUs(BMXP34* versions prior to V3.40), Modicon M340 X80 Ethernet Communication modules:BMXNOE0100 (H), BMXNOE0110 (H), BMXNOR0200H RTU(BMXNOE* all versions)(BMXNOR* versions prior to v1.7 IR24)	7.5	Haute
CVE-2022-37300	2022-09-12 15h40 +00:00	A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists that could cause unauthorized access in read and write mode to the controller when communicating over Modbus. Affected Products: EcoStruxure Control Expert Including all Unity Pro versions (former name of EcoStruxure Control Expert) (V15.0 SP1 and prior), EcoStruxure Process Expert, Including all versions of EcoStruxure Hybrid DCS (former name of EcoStruxure Process Expert) (V2021 and prior), Modicon M340 CPU (part numbers BMXP34) (V3.40 and prior), Modicon M580 CPU (part numbers BMEP and BMEH*) (V3.20 and prior).	9.8	Critique

Schneider Electric MODICON M340 BMXP342020H FIRMWARE 3.40

CPE Details

CPE Name: cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020h_firmware:3.40:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020h_firmware:3.40:::::::*