Schneider-electric Modicon_m580_bmeh582040c

11 CVEs affecting Schneider-electric Modicon_m580_bmeh582040c. Latest disclosed: 2024-02-14. Critical: 2, High: 6.

Top CVEs affecting Schneider-electric Modicon_m580_bmeh582040c
CVESeverityScorePublishedSummary
CVE-2022-37300Critical9.82022-09-12A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists that could cause unauthorized access in read and write mode to the cont…
CVE-2021-22779Critical9.12021-07-14Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), Ec…
CVE-2023-6408High8.12024-02-14 CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability exists that could cause a denial of service an…
CVE-2022-45789High8.12023-01-31A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hija…
CVE-2021-22786High7.52023-02-01A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communi…
CVE-2022-45788High7.52023-01-30A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of c…
CVE-2022-37301High7.52022-11-22A CWE-191: Integer Underflow (Wrap or Wraparound) vulnerability exists that could cause a denial of service of the controller due to memory access violations w…
CVE-2021-22792High7.52021-09-02A CWE-476: NULL Pointer Dereference vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller a…
CVE-2021-22791Medium6.52021-09-02A CWE-787: Out-of-bounds Write vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller applic…
CVE-2021-22790Medium6.52021-09-02A CWE-125: Out-of-bounds Read vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller applica…
CVE-2021-22789Medium6.52021-09-02A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC contro…