CVE-2019-6842

Published: Oct 29, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service attack on the PLC when upgrading the firmware with a missing web server image inside the package using FTP protocol.

Vendor	Product	Versions
n/a	Modicon M580, Modicon M340, and Modicon BMxCRA / 140CRA modules (see notification for version info)	affected `Modicon M580, Modicon M340, and Modicon BMxCRA / 140CRA modules (see notification for version info)`

Weaknesses (CWE)

CWE-755

References

https://www.se.com/ww/en/download/document/SEVD-2019-281-02/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-6842

Description

Affected Products

Weaknesses (CWE)

References