CVE-2018-7830

Name of the Vulnerable Software and Affected Versions Modicon M340, Premium, Quantum PLCs and BMXNOR0200 (affected versions not specified)

Description The issue is related to improper neutralization of CRLF sequences in HTTP headers, also known as 'HTTP Response Splitting'. This can lead to a denial of service, which can last for approximately 1 minute, by sending a specially crafted HTTP request. The vulnerability can be exploited to cause a device outage.

Recommendations For Modicon M340, Premium, Quantum PLCs and BMXNOR0200, at the moment, there is no information about a newer version that contains a fix for this vulnerability.