Resource exhaustion in Schneider-electric Modicon_m340_bmx_noc_0401
CVE-2013-2763
The Schneider Electric M340 PLC modules allow remote attackers to cause a denial of service (resource consumption) via unspecified vectors. NOTE: the vendor reportedly disputes this issue because it "could not be duplicated" and "an attac…
Vulnerability class: DoS (Denial of Service)
EPSS: 0.021 (79.7th percentile) — read the EPSS interpretation.
Affected products
- Schneider-electric Modicon_m340_bmx_noc_0401
- Schneider-electric Modicon_m340_bmx_noc_0401_firmware
- Schneider-electric Modicon_m340_bmx_noe_0100
- Schneider-electric Modicon_m340_bmx_noe_0100_firmware
- Schneider-electric Modicon_m340_bmx_noe_0100h
- Schneider-electric Modicon_m340_bmx_noe_0100h_firmware
- Schneider-electric Modicon_m340_bmx_noe_0110
- Schneider-electric Modicon_m340_bmx_noe_0110_firmware
- Schneider-electric Modicon_m340_bmx_noe_0110h
- Schneider-electric Modicon_m340_bmx_noe_0110h_firmware
Weakness classification (CWE)
Public proof-of-concept exploits
References
- cve@mitre.org (US Government Resource, Third Party Advisory, x_refsource_MISC, Broken Link)
Frequently asked questions
- What is CVE-2013-2763?
- CVE-2013-2763 is a vulnerability in Schneider-electric Modicon_m340_bmx_noc_0401, classified under Uncontrolled Resource Consumption. Published 2013-04-04.
- Is CVE-2013-2763 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.