Schneider-electric Modicom_quantum
8 CVEs affecting Schneider-electric Modicom_quantum. Latest disclosed: 2018-12-17. Critical: 2, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-7811 | Critical | 9.8 | 2018-11-30 | An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an u… |
CVE-2018-7809 | Critical | 9.8 | 2018-11-30 | An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an u… |
CVE-2018-7831 | High | 8.8 | 2018-11-30 | An Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability exists in the embedded web servers in all Modicon M340, Premium… |
CVE-2018-7833 | High | 7.5 | 2018-12-17 | An Improper Check for Unusual or Exceptional Conditions vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0… |
CVE-2018-7812 | High | 7.5 | 2018-12-17 | An Information Exposure through Discrepancy vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where th… |
CVE-2018-7830 | High | 7.5 | 2018-11-30 | Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') vulnerability exists in the embedded web servers in all Modicon M340, Pre… |
CVE-2018-7804 | Medium | 6.1 | 2018-12-17 | A URL Redirection to Untrusted Site vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a user cli… |
CVE-2018-7810 | Medium | 6.1 | 2018-11-30 | An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists in the embedded web servers in all Modicon M340, P… |