Schneider-Electric 140Cpu65260 Firmware vulnerabilities

CVE-2020-7533 [CRITICAL] CWE-287 CVE-2020-7533: CWE-287: Improper Authentication vulnerability exists which could cause the execution of commands on CWE-287: Improper Authentication vulnerability exists which could cause the execution of commands on the webserver without authentication when sending specially crafted HTTP requests.

CVE-2018-7794 [HIGH] CWE-754 CVE-2018-7794: A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580 A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading data with invalid index using Modbus TCP.

CVE-2019-6856 [HIGH] CWE-754 CVE-2019-6856: A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580 A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing specific physical memory blocks using Modbus TCP.

CVE-2019-6857 [HIGH] CWE-754 CVE-2019-6857: A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580 A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the controller when reading specific memory blocks using Modbus TCP.