cbcvebase.
CVE-2023-25620
published 2023-04-19

CVE-2023-25620: A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious…

medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious project file is loaded onto the controller by an authenticated user.

Affected

9 ranges
VendorProductVersion rangeFixed in
schneider-electricmodicon_m340_firmware< 3.513.51
schneider-electricmodicon_m580_firmware< 4.104.10
schneider_electriclegacy_modicon_premium_cpus
schneider_electriclegacy_modicon_quantum
schneider_electricmodicon_m340_cpu
schneider_electricmodicon_m580_cpu
schneider_electricmodicon_m580_cpu_safety
schneider_electricmodicon_mc80
schneider_electricmodicon_momentum_unity_m1e_processor