← Back

CVE-2019-6819

nvd nist
Published: May 22, 2019Modified: May 29, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.80, All firmware versions of Modicon Quantum and Modicon Premium.

Affected (4)

Schneider Electric
4 products
Modicon M340 Firmware
Modicon M580 Firmware
Modicon Quantum Firmware
Modicon Premium Firmware
Configuration A
1 vulnerable · 10 platform
Vulnerable SoftwareAffected Versions
Modicon M340 Firmware
Before 3.01
Running on/withPlatform Versions
Schneider Electric
Modicon M340 Bmxp341000
All versions
Schneider Electric
Modicon M340 Bmxp341000h
All versions
Schneider Electric
Modicon M340 Bmxp342000
All versions
Schneider Electric
Modicon M340 Bmxp3420102
All versions
Schneider Electric
Modicon M340 Bmxp3420102cl
All versions
Schneider Electric
Modicon M340 Bmxp342020
All versions
Schneider Electric
Modicon M340 Bmxp342020h
All versions
Schneider Electric
Modicon M340 Bmxp3420302
All versions
Schneider Electric
Modicon M340 Bmxp3420302cl
All versions
Schneider Electric
Modicon M340 Bmxp3420302h
All versions
Configuration B
1 vulnerable · 22 platform
Vulnerable SoftwareAffected Versions
Modicon M580 Firmware
Before 2.80
Running on/withPlatform Versions
Schneider Electric
Bmeh582040
All versions
Schneider Electric
Bmeh582040c
All versions
Schneider Electric
Bmeh584040
All versions
Schneider Electric
Bmeh584040c
All versions
Schneider Electric
Bmeh586040
All versions
Schneider Electric
Bmeh586040c
All versions
Schneider Electric
Modicon M580 Bmep581020
All versions
Schneider Electric
Modicon M580 Bmep581020h
All versions
Schneider Electric
Modicon M580 Bmep582020
All versions
Schneider Electric
Modicon M580 Bmep582020h
All versions
Schneider Electric
Modicon M580 Bmep582040
All versions
Schneider Electric
Modicon M580 Bmep582040h
All versions
Schneider Electric
Modicon M580 Bmep582040s
All versions
Schneider Electric
Modicon M580 Bmep583020
All versions
Schneider Electric
Modicon M580 Bmep583040
All versions
Schneider Electric
Modicon M580 Bmep584020
All versions
Schneider Electric
Modicon M580 Bmep584040
All versions
Schneider Electric
Modicon M580 Bmep584040s
All versions
Schneider Electric
Modicon M580 Bmep585040
All versions
Schneider Electric
Modicon M580 Bmep585040c
All versions
Schneider Electric
Modicon M580 Bmep586040
All versions
Schneider Electric
Modicon M580 Bmep586040c
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Modicon Quantum Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Modicon Quantum
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Modicon Premium Firmware
All versions
Running on/withPlatform Versions
Schneider Electric
Modicon Premium
All versions

Related CWEs

CWE-754
Improper Check for Unusual or Exceptional Conditions
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (4)

Source: cybersecurity@se.com
Broken Link
Source: cybersecurity@se.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.