CVE-2019-6841

MEDIUM Year: 2019
CVSS v3 Score
4.9
Medium
CVSS v2 Score
4.0
Medium
Weakness Type
CWE-755
View all →

Vulnerability Description

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon M340 (all firmware versions), and Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service attack on the PLC when upgrading the firmware with no firmware image inside the package using FTP protocol.

Related Vulnerabilities

CVE-2019-6842

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Serv...

CWE-7552019

CVE-2019-6843

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon M340 (all firmware versions), and Modicon BMxCRA and 140CRA ...

CWE-7552019

CVE-2019-6844

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Serv...

CWE-7552019

CVE-2019-6847

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Serv...

CWE-7552019

CVE-2022-29493

MEDIUM
CVSS:4.9(Medium)

Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions 2.86, 2.09 and 2.78 may allow a privileged user to potentially enable denial of service via network ac...

CWE-7552022

CVE-2022-35295

MEDIUM
CVSS:4.9(Medium)

In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves.

CWE-7552022