Vulnerabilities > CVE-2020-7477 - Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider-Electric products

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
schneider-electric
CWE-754
NVD
Published: 2020-03-23
Updated: 2020-03-25

Summary

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethernet – 140CPU65xxxxx (all Versions), and Premium processors with integrated Ethernet (all Versions), which could cause a Denial of Service when sending a specially crafted command over Modbus.

Vulnerable Configurations

Part Description Count
OS
Schneider-Electric
28
Hardware
Schneider-Electric
28

Common Weakness Enumeration (CWE)

References