Vulnerabilities > CVE-2019-6819 - Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider-Electric products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

schneider-electric

CWE-754

NVD

Published: 2019-05-22

Updated: 2024-04-10

Summary

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.80, All firmware versions of Modicon Quantum and Modicon Premium.

Vulnerable Configurations

Part	Description	Count
OS	Schneider-Electric Schneider Electric Modicon M340 Firmware - Schneider Electric Modicon M580 Firmware - Schneider Electric Modicon M580 Firmware 2.10 Schneider Electric Modicon M580 Firmware 2.12 Schneider Electric Modicon M580 Firmware 2.30 Schneider Electric Modicon M580 Firmware 2.41 Schneider Electric Modicon Quantum Firmware * Schneider Electric Modicon Premium Firmware *	8
Hardware	Schneider-Electric Schneider Electric Modicon M340 Bmxp341000 - Schneider Electric Modicon M340 Bmxp341000H - Schneider Electric Modicon M340 Bmxp342000 - Schneider Electric Modicon M340 Bmxp3420102 - Schneider Electric Modicon M340 Bmxp3420102Cl - Schneider Electric Modicon M340 Bmxp342020 - Schneider Electric Modicon M340 Bmxp342020H - Schneider Electric Modicon M340 Bmxp3420302 - Schneider Electric Modicon M340 Bmxp3420302Cl - Schneider Electric Modicon M340 Bmxp3420302H - Schneider Electric Bmeh582040 - Schneider Electric Bmeh582040C - Schneider Electric Bmeh584040 - Schneider Electric Bmeh584040C - Schneider Electric Bmeh586040 - Schneider Electric Bmeh586040C - Schneider Electric Modicon M580 Bmep581020 - Schneider Electric Modicon M580 Bmep581020H - Schneider Electric Modicon M580 Bmep582020 - Schneider Electric Modicon M580 Bmep582020H - Schneider Electric Modicon M580 Bmep582040 - Schneider Electric Modicon M580 Bmep582040H - Schneider Electric Modicon M580 Bmep582040S - Schneider Electric Modicon M580 Bmep583020 - Schneider Electric Modicon M580 Bmep583040 - Schneider Electric Modicon M580 Bmep584020 - Schneider Electric Modicon M580 Bmep584040 - Schneider Electric Modicon M580 Bmep584040S - Schneider Electric Modicon M580 Bmep585040 - Schneider Electric Modicon M580 Bmep585040C - Schneider Electric Modicon M580 Bmep586040 - Schneider Electric Modicon M580 Bmep586040C - Schneider Electric Modicon Quantum - Schneider Electric Modicon Premium -	34

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References