CVE-2012-0931

Name of the Vulnerable Software and Affected Versions Schneider Electric Modicon Quantum PLC (affected versions not specified) Schneider Electric Modicon M340 (affected versions not specified)

Description The issue is related to a lack of authentication between the Unity software and the PLC, which can be exploited by remote attackers to cause a denial of service or possibly execute arbitrary code. The vulnerability in the programmable logic controller's software is due to weaknesses in authentication.

Recommendations For Schneider Electric Modicon Quantum PLC, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Schneider Electric Modicon M340, at the moment, there is no information about a newer version that contains a fix for this vulnerability.