CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Schneider Electric 3Modicon M340 Modicon PremiumModicon Quantum PlcApr 29, 2026 Apr 4, 2013 N/A· v4 N/A· v3 8.5 HIGH· v2 The FactoryCast service on the Schneider Electric Quantum 140NOE77111 and 140NWM10000, M340 BMXNOE0110x, and Premium TSXETY5103 PLC modules allows remote authenticated users to send Modbus messages, and consequently exec...Show more |
1Schneider Electric 3Modicon M340 Modicon PremiumModicon Quantum PlcApr 29, 2026 Apr 4, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability on the Schneider Electric Quantum 140NOE77111, 140NOE77101, and 140NWM10000; M340 BMXNOC0401, BMXNOE0100x, and BMXNOE011xx; and Premium TSXETY4103, TSXETY5103, and TSXWMY10...Show more |
1Schneider Electric 1Modicon Quantum Plc Apr 29, 2026 Jan 28, 2012 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Schneider Electric Modicon Quantum PLC does not perform authentication between the Unity software and PLC, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vec...Show more |
1Schneider Electric 1Modicon Quantum Plc Apr 29, 2026 Jan 28, 2012 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Schneider Electric Modicon Quantum PLC allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
1Schneider Electric 1Modicon Quantum Plc Apr 29, 2026 Jan 28, 2012 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Multiple buffer overflows in Schneider Electric Modicon Quantum PLC allow remote attackers to cause a denial of service via malformed requests to the (1) FTP server or (2) HTTP server. |