CVE-2019-6842

MEDIUM Year: 2019
CVSS v3 Score
4.9
Medium
CVSS v2 Score
4.0
Medium
Weakness Type
CWE-755
View all →

Vulnerability Description

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service attack on the PLC when upgrading the firmware with a missing web server image inside the package using FTP protocol.

Related Vulnerabilities

CVE-2019-6841

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon M340 (all firmware versions), and Modicon BMxCRA and 140CRA ...

CWE-7552019

CVE-2019-6843

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon M340 (all firmware versions), and Modicon BMxCRA and 140CRA ...

CWE-7552019

CVE-2019-6844

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Serv...

CWE-7552019

CVE-2019-6847

MEDIUM
CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Serv...

CWE-7552019

CVE-2022-29493

MEDIUM
CVSS:4.9(Medium)

Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions 2.86, 2.09 and 2.78 may allow a privileged user to potentially enable denial of service via network ac...

CWE-7552022

CVE-2022-35295

MEDIUM
CVSS:4.9(Medium)

In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves.

CWE-7552022