PT-2020-19625 · Schneider Electric · Modicon Quantum+2
Published
2020-12-11
·
Updated
2026-05-28
·
CVE-2020-7549
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Modicon M340 versions (affected versions not specified)
Modicon Quantum versions (affected versions not specified)
Modicon Premium versions (affected versions not specified)
Description
A vulnerability exists in the Web Server of the affected devices, which could cause denial of HTTP and FTP services when a series of specially crafted requests is sent to the controller over HTTP.
Recommendations
For Modicon M340, refer to the security notification for specific guidance on resolving the issue.
For Modicon Quantum, refer to the security notification for specific guidance on resolving the issue.
For Modicon Premium, refer to the security notification for specific guidance on resolving the issue.
Fix
Improper Check for Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Modicon M340
Modicon Premium
Modicon Quantum