Schneider-electric 140noe77111_firmware

8 CVEs affecting Schneider-electric 140noe77111_firmware. Latest disclosed: 2022-02-04. Critical: 2, High: 4.

Top CVEs affecting Schneider-electric 140noe77111_firmware
CVESeverityScorePublishedSummary
CVE-2020-7540Critical9.82020-12-11A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premi…
CVE-2020-7533Critical9.82020-12-01CWE-287: Improper Authentication vulnerability exists which could cause the execution of commands on the webserver without authentication when sending speciall…
CVE-2020-7534High8.82022-02-04A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists on the web server used, that could cause a leak of sensitive data or unauthorized actions on…
CVE-2020-7539High7.52020-12-11A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modico…
CVE-2020-7535High7.52020-12-11A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web Server on Modicon M…
CVE-2020-7477High7.52020-03-23A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Q…
CVE-2020-7549Medium5.32020-12-11A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modic…
CVE-2020-7541Medium5.32020-12-11A CWE-425: Direct Request ('Forced Browsing') vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and ass…