PT-2020-8981 · Schneider Electric · Modicon Premium+3
Published
2020-01-06
·
Updated
2026-05-29
·
CVE-2018-7794
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Modicon M580 (affected versions not specified)
Modicon M340 (affected versions not specified)
Modicon Quantum (affected versions not specified)
Modicon Premium (affected versions not specified)
Description
A vulnerability exists that could cause a Denial of Service when reading data with an invalid index using Modbus TCP. This issue is related to improper checks for unusual or exceptional conditions.
Recommendations
For Modicon M580, update to a version that addresses this issue.
For Modicon M340, update to a version that addresses this issue.
For Modicon Quantum, update to a version that addresses this issue.
For Modicon Premium, update to a version that addresses this issue.
As a temporary workaround, consider restricting the use of Modbus TCP to minimize the risk of exploitation.
Fix
DoS
Improper Check for Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Modicon M340
Modicon M580
Modicon Premium
Modicon Quantum