PT-2020-5722 · Schneider Electric · Modicon M340
Published
2020-06-12
·
Updated
2020-06-12
CVSS v2.0
5.7
Medium
| Vector | AV:A/AC:M/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Schneider Electric Modicon M340 (affected versions not specified)
Description:
The issue is related to insufficient input validation in the software of the Schneider Electric Modicon M340 programmable logic controller. An attacker, acting remotely, can exploit this issue by sending a specially crafted TCP packet to port 502, potentially causing a denial of service.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Modicon M340