Schneider-electric Bmxnor0200h_firmware

14 CVEs affecting Schneider-electric Bmxnor0200h_firmware. Latest disclosed: 2022-02-04. Critical: 4, High: 8.

Top CVEs affecting Schneider-electric Bmxnor0200h_firmware
CVESeverityScorePublishedSummary
CVE-2018-7761Critical9.82018-04-18A vulnerability exists in the HTTP request parser in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200 which could allow arbi…
CVE-2018-7760Critical9.82018-04-18An authorization bypass vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. Requests to CGI functions…
CVE-2018-7242Critical9.82018-04-18Vulnerable hash algorithms exists in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the com…
CVE-2018-7241Critical9.82018-04-18Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communicati…
CVE-2020-7534High8.82022-02-04A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists on the web server used, that could cause a leak of sensitive data or unauthorized actions on…
CVE-2019-6810High8.82019-09-17CWE-284: Improper Access Control vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions), which could cause the execution of c…
CVE-2019-6831High8.62019-09-17A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions), which…
CVE-2020-7536High7.52020-12-11A CWE-754:Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M340 CPUs (BMXP34* versions prior to V3.30) Modicon M340 Communi…
CVE-2019-6813High7.52019-09-17A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions) and Mo…
CVE-2018-7762High7.52018-04-18A vulnerability exists in the web services to process SOAP requests in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200 whic…
CVE-2018-7759High7.52018-04-18A buffer overflow vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. The buffer overflow vulnerabilit…
CVE-2017-6017High7.52017-06-30A Resource Exhaustion issue was discovered in Schneider Electric Modicon M340 PLC BMXNOC0401, BMXNOE0100, BMXNOE0110, BMXNOE0110H, BMXNOR0200H, BMXP341000, BMX…
CVE-2015-6462Medium5.42019-03-21Reflected Cross-Site Scripting (nonpersistent) allows an attacker to craft a specific URL, which contains Java script that will be executed on the Schneider El…
CVE-2015-6461Medium5.42019-03-21Remote file inclusion allows an attacker to craft a specific URL referencing the Schneider Electric Modicon BMXNOC0401, BMXNOE0100, BMXNOE0110, BMXNOE0110H, BM…