CVE-2019-6843

Name of the Vulnerable Software and Affected Versions Modicon M580 versions prior to V3.10 Modicon M340 (all firmware versions) Modicon BMxCRA and 140CRA modules (all firmware versions)

Description A vulnerability exists in the Modicon controllers due to the lack of integrity check of the firmware update. This could allow a remote attacker to upload a firmware update with an empty image using the FTP protocol, causing a Denial of Service attack on the PLC. The issue is related to improper handling of exceptional conditions.

Recommendations For Modicon M580 versions prior to V3.10, update the firmware to version V3.10 or later. For Modicon M340, restrict access to the FTP protocol until a fix is available. For Modicon BMxCRA and 140CRA modules, avoid using the FTP protocol for firmware updates until a patch is released. As a temporary workaround, consider disabling the FTP protocol for firmware updates on all affected devices until a fix is available.