CVE-2020-7477

Published: Mar 23, 2020Modified: May 28, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethernet – 140CPU65xxxxx (all Versions), and Premium processors with integrated Ethernet (all Versions), which could cause a Denial of Service when sending a specially crafted command over Modbus.

Affected (28)

Products: Schneider Electric: 140noe77101 Firmware, 140noe77111 Firmware, Tsxh5744m Firmware, Tsxh5724m Firmware, Tsxp576634m Firmware, Tsxp57554m Firmware, Tsxp575634m Firmware, Tsxp57454m Firmware, Tsxp574634m Firmware, Tsxp573634m Firmware, Tsxp57304m Firmware, Tsxp57254m Firmware, Tsxp572634m Firmware, Tsxp57204m Firmware, Tsxp571634m Firmware, Tsxp57154m Firmware, Tsxp57104m Firmware, 140cpu65150 Firmware, 140cpu65160 Firmware, 140cpu65260 Firmware, 140cpu67060 Firmware, 140cpu67160 Firmware, 140cpu67261 Firmware, 140cpu67260 Firmware, 140cpu65860 Firmware, 140cpu67861 Firmware, 140cpu65160s Firmware, 140cpu67160s Firmware

28 products

140cpu65160s Firmware

140cpu67160s Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140noe77101 Firmware	Up to 7.0

Running on/with	Platform Versions
Schneider Electric 140noe77101	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140noe77111 Firmware	Up to 7.0

Running on/with	Platform Versions
Schneider Electric 140noe77111	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxh5744m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxh5744m	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxh5724m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxh5724m	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp576634m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp576634m	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp57554m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp57554m	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp575634m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp575634m	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp57454m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp57454m	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp574634m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp574634m	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp573634m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp573634m	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp57304m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp57304m	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp57254m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp57254m	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp572634m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp572634m	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp57204m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp57204m	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp571634m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp571634m	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp57154m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp57154m	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric Tsxp57104m Firmware	All versions

Running on/with	Platform Versions
Schneider Electric Tsxp57104m	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu65150 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu65150	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu65160 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu65160	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu65260 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu65260	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu67060 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu67060	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu67160 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu67160	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu67261 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu67261	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu67260 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu67260	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu65860 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu65860	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu67861 Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu67861	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu65160s Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu65160s	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Schneider Electric 140cpu67160s Firmware	All versions

Running on/with	Platform Versions
Schneider Electric 140cpu67160s	All versions

Related CWEs

CWE-754

Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (2)

https://www.se.com/ww/en/download/document/SEVD-2020-070-02/

Source: cybersecurity@se.com

Vendor Advisory

https://www.se.com/ww/en/download/document/SEVD-2020-070-02/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.